Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2023:5693
HistoryOct 12, 2023 - 4:11 p.m.

(RHSA-2023:5693) Moderate: Red Hat Ceph Storage 6.1 security, enhancement, and bug fix update

2023-10-1216:11:56
access.redhat.com
20

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.004 Low

EPSS

Percentile

73.4%

JSON

Red Hat Ceph Storage is a scalable, open, software-defined storage platform
that combines the most stable version of the Ceph storage system with a
Ceph management platform, deployment utilities, and support services.

These new packages include numerous enhancements, and bug fixes. Space precludes documenting all of these changes in this advisory.
Users are directed to the Red Hat Ceph Storage Release Notes for
information on the most significant of these changes:

https://access.redhat.com/documentation/en-us/red_hat_ceph_storage/6.1/html/release_notes/index

OSVersionArchitecturePackageVersionFilename
RedHat9ppc64leceph-base< 17.2.6-148.el9cpceph-base-17.2.6-148.el9cp.ppc64le.rpm
RedHat9s390xceph-common-debuginfo< 17.2.6-148.el9cpceph-common-debuginfo-17.2.6-148.el9cp.s390x.rpm
RedHat9x86_64ceph-base< 17.2.6-148.el9cpceph-base-17.2.6-148.el9cp.x86_64.rpm
RedHat9x86_64librgw2-debuginfo< 17.2.6-148.el9cplibrgw2-debuginfo-17.2.6-148.el9cp.x86_64.rpm
RedHat9x86_64ceph-mgr-debuginfo< 17.2.6-148.el9cpceph-mgr-debuginfo-17.2.6-148.el9cp.x86_64.rpm
RedHat9ppc64lelibrbd-devel< 17.2.6-148.el9cplibrbd-devel-17.2.6-148.el9cp.ppc64le.rpm
RedHat9noarchceph-mib< 17.2.6-148.el9cpceph-mib-17.2.6-148.el9cp.noarch.rpm
RedHat9x86_64ceph-fuse< 17.2.6-148.el9cpceph-fuse-17.2.6-148.el9cp.x86_64.rpm
RedHat9s390xceph-mon-debuginfo< 17.2.6-148.el9cpceph-mon-debuginfo-17.2.6-148.el9cp.s390x.rpm
RedHat9ppc64leceph-test-debuginfo< 17.2.6-148.el9cpceph-test-debuginfo-17.2.6-148.el9cp.ppc64le.rpm
Rows per page:
1-10 of 1551

Related

nessus 31
redhat 13
veracode 4
cve 5
redhatcve 5
ubuntucve 5
prion 5
debiancve 5
osv 13
ubuntu 1
openvas 3
amazon 2
ibm 27
cnvd 1
github 5
gitlab 4
f5 2
typo3 1
rubygems 2
centos 1
almalinux 1
oraclelinux 2
rocky 1
hackerone 1
jvn 1
ics 1
debian 1
oracle 1
nessus
nessus
RHEL 9 : Red Hat Ceph Storage 6.1 (RHSA-2023:5693)
2023-10-12 00:00:00
RHEL 8 : Red Hat Ceph Storage 5.3 Security update (Moderate) (RHSA-2024:0745)
2024-02-09 00:00:00
RHEL 7 : python-XStatic-Bootstrap-SCSS (RHSA-2020:5571)
2020-12-18 00:00:00
redhat
redhat
(RHSA-2024:0745) Moderate: Red Hat Ceph Storage 5.3 Security update
2024-02-08 16:19:54
(RHSA-2020:0133) Moderate: Red Hat Decision Manager 7.6.0 Security Update
2020-01-16 16:00:35
(RHSA-2020:0132) Moderate: Red Hat Process Automation Manager 7.6.0 Security Update
2020-01-16 16:00:13
veracode
veracode
Improper Access Control
2023-10-10 03:23:18
Cross-site Scripting (XSS)
2019-01-10 01:44:15
Cross-Site Scripting (XSS)
2019-01-10 01:52:43
cve
cve
CVE-2023-46159
2024-02-02 03:15:09
CVE-2018-14041
2018-07-13 14:29:00
CVE-2018-20677
2019-01-09 05:29:00
redhatcve
redhatcve
CVE-2023-46159
2024-02-08 12:36:39
CVE-2023-43040
2023-09-27 06:24:45
CVE-2018-14041
2019-10-09 06:49:06
ubuntucve
ubuntucve
CVE-2023-43040
2023-09-27 00:00:00
CVE-2018-20677
2019-01-09 00:00:00
CVE-2018-20676
2019-01-09 00:00:00
prion
prion
Code injection
2024-02-02 03:15:00
Design/Logic Flaw
2019-01-09 05:29:00
Design/Logic Flaw
2019-01-09 05:29:00
debiancve
debiancve
CVE-2023-43040
2023-10-12 17:03:58
CVE-2018-20676
2019-01-09 05:29:00
CVE-2018-20677
2019-01-09 05:29:00
osv
osv
ceph vulnerability
2024-01-29 18:08:52
CVE-2018-20676
2019-01-09 05:29:01
bootstrap Cross-site Scripting vulnerability
2019-01-17 13:57:56
ubuntu
ubuntu
Ceph vulnerability
2024-01-29 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-6613-1)
2024-01-30 00:00:00
TYPO3 Multiple Vulnerabilities (Jan 2019)
2019-01-25 00:00:00
Debian: Security Advisory (DLA-3629-1)
2023-10-24 00:00:00
amazon
amazon
Medium: ceph-common
2023-10-12 15:09:00
Medium: ipa
2020-10-22 17:40:00
ibm
ibm
Security Bulletin: IBM Storage Ceph is vulnerable to Uncontrolled Resource Consumption in Ceph (CVE-2023-46159)
2024-01-18 21:15:03
Security Bulletin: IBM Storage Ceph is vulnerable to Uncontrolled Resource Consumption in Ceph (CVE-2023-46159)
2024-01-26 22:04:48
Security Bulletin: IBM Storage Ceph is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross Site Scripting') in Bootstrap (CVE-2018-20676)
2024-01-26 22:16:04
cnvd
cnvd
IBM Storage Ceph Input Validation Error Vulnerability
2024-02-22 00:00:00
github
github
XSS vulnerability that affects bootstrap
2019-01-17 13:57:34
bootstrap Cross-site Scripting vulnerability
2019-01-17 13:57:56
Bootstrap Cross-site Scripting vulnerability
2018-09-13 15:50:32
gitlab
gitlab
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
2019-01-09 00:00:00
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
2019-01-09 00:00:00
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
2018-07-13 00:00:00
f5
f5
K05380109 : Bootstrap vulnerability CVE-2018-14041
2021-11-19 00:00:00
K000133673 : Bootstrap vulnerability CVE-2016-10735
2023-04-27 00:00:00
typo3
typo3
Cross-Site Scripting in Bootstrap CSS toolkit
2019-01-22 00:00:00
rubygems
rubygems
Bootstrap Cross-site Scripting vulnerability
2018-09-12 21:00:00
XSS vulnerabilities via data-parent, data-target, data-container in bootstrap
2018-07-02 21:00:00
centos
centos
ipa, python2 security update
2020-10-20 18:15:27
almalinux
almalinux
Moderate: idm:DL1 and idm:client security, bug fix, and enhancement update
2020-11-03 12:25:36
oraclelinux
oraclelinux
idm:DL1 and idm:client security, bug fix, and enhancement update
2020-11-10 00:00:00
ipa security, bug fix, and enhancement update
2020-10-06 00:00:00
rocky
rocky
idm:DL1 and idm:client security, bug fix, and enhancement update
2020-11-03 12:25:36
hackerone
hackerone
Sifchain: Vulnerable javascript dependency at Main domain
2021-05-07 20:48:11
jvn
jvn
JVN#06527859: KinagaCMS vulnerable to cross-site scripting
2019-03-15 00:00:00
ics
ics
Mitsubishi Electric EcoWebServerIII
2022-02-24 12:00:00
debian
debian
[SECURITY] [DLA 3629-1] ceph security update
2023-10-23 16:59:44
oracle
oracle
Oracle Critical Patch Update Advisory - April 2021
2021-04-20 00:00:00

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.004 Low

EPSS

Percentile

73.4%

JSON
Related for RHSA-2023:5693
nessus31redhat13veracode4cve5redhatcve5ubuntucve5prion5debiancve5osv13ubuntu1openvas3amazon2ibm27cnvd1github5gitlab4f52typo31rubygems2centos1almalinux1oraclelinux2rocky1hackerone1jvn1ics1debian1oracle1