Lucene search

K

StorageGRID (formerly StorageGRID Webscale) Security Vulnerabilities

cve
cve

CVE-2024-21988

StorageGRID (formerly StorageGRID Webscale) versions prior to 11.7.0.9 and 11.8.0.5 are susceptible to disclosure of sensitive information via complex MiTM attacks due to a vulnerability in the SSH cryptographic...

5.3CVSS

5.2AI Score

0.0004EPSS

2024-06-14 10:15 PM
11
cve
cve

CVE-2024-21984

StorageGRID (formerly StorageGRID Webscale) versions prior to 11.8 are susceptible to a difficult to exploit Reflected Cross-Site Scripting (XSS) vulnerability. Successful exploit requires the attacker to know specific information about the target instance and trick a privileged user into...

5.9CVSS

5.4AI Score

0.0004EPSS

2024-02-16 11:15 PM
13
cve
cve

CVE-2024-21983

StorageGRID (formerly StorageGRID Webscale) versions prior to 11.8 are susceptible to a Denial of Service (DoS) vulnerability. Successful exploit by an authenticated attacker could lead to an out of memory condition or node...

6.5CVSS

6.3AI Score

0.0004EPSS

2024-02-16 11:15 PM
11
cve
cve

CVE-2023-27318

StorageGRID (formerly StorageGRID Webscale) versions 11.6.0 through 11.6.0.13 are susceptible to a Denial of Service (DoS) vulnerability. A successful exploit could lead to a crash of the Local Distribution Router (LDR)...

7.5CVSS

7.4AI Score

0.0005EPSS

2024-02-05 09:15 PM
12
cve
cve

CVE-2022-38734

StorageGRID (formerly StorageGRID Webscale) versions prior to 11.6.0.8 are susceptible to a Denial of Service (DoS) vulnerability. A successful exploit could lead to to a crash of the Local Distribution Router (LDR)...

7.5CVSS

7.3AI Score

0.001EPSS

2023-03-02 06:15 PM
20
cve
cve

CVE-2022-23238

Linux deployments of StorageGRID (formerly StorageGRID Webscale) versions 11.6.0 through 11.6.0.2 deployed with a Linux kernel version less than 4.7.0 are susceptible to a vulnerability which could allow a remote unauthenticated attacker to view limited metrics information and modify alert email...

6.5CVSS

6.2AI Score

0.001EPSS

2022-08-10 08:15 PM
35
6
cve
cve

CVE-2022-23232

StorageGRID (formerly StorageGRID Webscale) versions prior to 11.6.0 are susceptible to a vulnerability which when successfully exploited could allow disabled, expired, or locked external user accounts to access S3 data to which they previously had access. StorageGRID 11.6.0 obtains the user...

4.9CVSS

5.1AI Score

0.001EPSS

2022-03-04 06:15 PM
51
cve
cve

CVE-2022-23233

StorageGRID (formerly StorageGRID Webscale) versions prior to 11.6.0 are susceptible to a vulnerability which when successfully exploited could lead to Denial of Service (DoS) of the Local Distribution Router (LDR)...

7.5CVSS

7.4AI Score

0.001EPSS

2022-03-04 06:15 PM
60
cve
cve

CVE-2021-27006

StorageGRID (formerly StorageGRID Webscale) versions 11.5 prior to 11.5.0.5 are susceptible to a vulnerability which may allow an administrative user to escalate their privileges and modify settings in SANtricity System...

4.4CVSS

4.8AI Score

0.0004EPSS

2021-12-23 08:15 PM
24
cve
cve

CVE-2020-8571

StorageGRID (formerly StorageGRID Webscale) versions 10.0.0 through 11.3 prior to 11.2.0.8 and 11.3.0.4 are susceptible to a vulnerability which allows an unauthenticated remote attacker to cause a Denial of Service...

7.5CVSS

7.5AI Score

0.002EPSS

2020-03-13 04:15 PM
32