Miggo Logo

CVE-2014-0006: OpenStack Swift Discloses Secret URLs to Timing Attack

7.5

CVSS Score
3.1

Basic Information

EPSS Score
0.4943%
Published
5/17/2022
Updated
11/26/2024
KEV Status
No
Technology
TechnologyPython

Technical Details

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Package NameEcosystemVulnerable VersionsFirst Patched Version
swiftpip>= 1.4.6, <= 1.8.0
swiftpip>= 1.9.0, <= 1.10.0
swiftpip= 1.11.01.12.0

Vulnerability Intelligence
Miggo AIMiggo AI

Miggo AIRoot Cause Analysis

The vulnerability stems from insecure timing-sensitive string comparison in TempURL middleware. The commit 7546339 shows the fix replaced the vulnerable 'in' check with a constant-time comparison using 'streq_const_time'. The original code path in the call method performed a linear scan of hmac_vals with short-circuiting logic, making response times dependent on input similarity to valid signatures. This matches the CVE description of a timing side-channel attack against TempURL signatures.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

T** T*mpURL mi**l*w*r* in Op*nSt**k O*j**t Stor*** (Swi*t) *.*.* t*rou** *.*.*, *.*.* t*rou** *.**.*, *n* *.**.* *llows r*mot* *tt**k*rs to o*t*in s**r*t URLs *y l*v*r**in* *n o*j**t n*m* *n* * timin* si**-***nn*l *tt**k.

Reasoning

T** vuln*r**ility st*ms *rom ins**ur* timin*-s*nsitiv* strin* *omp*rison in T*mpURL mi**l*w*r*. T** *ommit ******* s*ows t** *ix r*pl**** t** vuln*r**l* 'in' ****k wit* * *onst*nt-tim* *omp*rison usin* 'str*q_*onst_tim*'. T** ori*in*l *o** p*t* in t*