VulnerableCode Package Details - pkg:pypi/swift@1.11.0

Search for packages

Vulnerability	Summary	Fixed by
VCID-4djj-fd3y-jqch Aliases: CVE-2014-0006 GHSA-cf9m-q836-vf26 PYSEC-2014-116	The TempURL middleware in OpenStack Object Storage (Swift) 1.4.6 through 1.8.0, 1.9.0 through 1.10.0, and 1.11.0 allows remote attackers to obtain secret URLs by leveraging an object name and a timing side-channel attack.	1.12.0 Affected by 0 other vulnerabilities.
VCID-akvp-y5s1-x7eg Aliases: CVE-2014-3497 GHSA-66vj-393f-hxfv	OpenStack Swift Cross-site Scriping vulnerability Cross-site scripting (XSS) vulnerability in OpenStack Swift 1.11.0 through 1.13.1 allows remote attackers to inject arbitrary web script or HTML via the WWW-Authenticate header.	2.0.0 Affected by 0 other vulnerabilities.

Vulnerability

Summary

Fixed by

VCID-4djj-fd3y-jqch
Aliases:
CVE-2014-0006
GHSA-cf9m-q836-vf26
PYSEC-2014-116

The TempURL middleware in OpenStack Object Storage (Swift) 1.4.6 through 1.8.0, 1.9.0 through 1.10.0, and 1.11.0 allows remote attackers to obtain secret URLs by leveraging an object name and a timing side-channel attack.

1.12.0
Affected by 0 other vulnerabilities.

VCID-akvp-y5s1-x7eg
Aliases:
CVE-2014-3497
GHSA-66vj-393f-hxfv

OpenStack Swift Cross-site Scriping vulnerability Cross-site scripting (XSS) vulnerability in OpenStack Swift 1.11.0 through 1.13.1 allows remote attackers to inject arbitrary web script or HTML via the WWW-Authenticate header.

2.0.0
Affected by 0 other vulnerabilities.

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Vulnerability

Summary

Aliases

This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-04T14:31:44.619321+00:00	GHSA Importer	Affected by	VCID-4djj-fd3y-jqch	https://github.com/advisories/GHSA-cf9m-q836-vf26	38.1.0
2026-04-04T14:31:38.336920+00:00	GHSA Importer	Affected by	VCID-akvp-y5s1-x7eg	https://github.com/advisories/GHSA-66vj-393f-hxfv	38.1.0
2026-04-03T21:25:59.015071+00:00	GitLab Importer	Affected by	VCID-4djj-fd3y-jqch	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/swift/CVE-2014-0006.yml	38.1.0
2026-04-03T21:25:53.049800+00:00	GitLab Importer	Affected by	VCID-akvp-y5s1-x7eg	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/swift/CVE-2014-3497.yml	38.1.0
2026-04-01T14:58:43.438620+00:00	PyPI Importer	Affected by	VCID-4djj-fd3y-jqch	https://osv-vulnerabilities.storage.googleapis.com/PyPI/all.zip	38.0.0
2026-04-01T13:11:31.130895+00:00	GithubOSV Importer	Affected by	VCID-4djj-fd3y-jqch	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-cf9m-q836-vf26/GHSA-cf9m-q836-vf26.json	38.0.0
2026-04-01T12:40:55.828926+00:00	Pypa Importer	Affected by	VCID-4djj-fd3y-jqch	https://github.com/pypa/advisory-database/blob/main/vulns/swift/PYSEC-2014-116.yaml	38.0.0