MGASA-2025-0333

Advisory lineage Upstream: 1 Downstream: 0
Upstream
CVE-2024-47866
Published: 29 Dec 2025, 20:41
Last modified:16 Apr 2026, 04:21

Vulnerability Summary

Overall Risk (default)
minimal
0/100
CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

29 Dec 2025, 20:41
Published
Vulnerability first disclosed
16 Apr 2026, 04:21
Last Modified
Vulnerability information updated

Description

Updated ceph packages fix security vulnerability RGW DoS attack with empty HTTP header in S3 object copy. (CVE-2024-47866)

Affected Systems

  • mageiaceph

    < 18.2.7-2.1.mga9

References (4)