CVE-2014-3497
Openstack Swift < 2.0.0 - XSS
Title source: ruleDescription
Cross-site scripting (XSS) vulnerability in OpenStack Swift 1.11.0 through 1.13.1 allows remote attackers to inject arbitrary web script or HTML via the WWW-Authenticate header.
References (7)
Scores
EPSS
0.0044
EPSS Percentile
63.0%
Classification
CWE
CWE-79
Status
draft
Affected Products (7)
openstack/swift
openstack/swift
openstack/swift
openstack/swift
openstack/swift
openstack/swift
pypi/swift
< 2.0.0PyPI
Timeline
Published
Jul 03, 2014
Tracked Since
Feb 18, 2026