Lucene search
K

47 matches found

RedHat Linux
RedHat Linux
added 2018/07/26 3:35 p.m.5 views

ceph: cephx uses weak signatures

A flaw was found in the way signature calculation was handled by cephx authentication protocol. An attacker having access to ceph cluster network, who is able to alter the message payload, was able to bypass signature checks done by cephx protocol...

6.5CVSS7.2AI score0.01902EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2018/07/26 3:35 p.m.3 views

ceph: cephx protocol is vulnerable to replay attack

It was found that cephx authentication protocol did not verify ceph clients correctly and was vulnerable to replay attack. Any attacker having access to the ceph cluster network who is also able to sniff packets on the network can use this vulnerability to authenticate with ceph service and perfo...

7.5CVSS7.2AI score0.01374EPSS
Exploits0References4
CNVD
CNVD
added 2018/07/25 12:0 a.m.45 views

Red Hat Ceph Weak Signature Vulnerability

Red Hat Ceph is a Linux PB-level distributed file system from Red Hat. The main goal of the system is to be designed as a distributed file system without a single point of failure based on POSIX Portable Operating System Interface, so that data can be fault-tolerant and seamlessly replicated.Ceph...

6.5CVSS6.9AI score0.01902EPSS
Exploits0References1
CNVD
CNVD
added 2018/07/12 12:0 a.m.25 views

Red Hat Ceph Design Vulnerability

Red Hat Ceph is a Linux PB-level distributed file system from Red Hat. The main goal of the system is to be designed as a distributed file system without a single point of failure based on POSIX Portable Operating System Interface, so that data can be fault-tolerant and seamlessly replicated.Ceph...

7.5CVSS7.7AI score0.01374EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2018/07/11 6:21 p.m.6 views

ceph: cephx uses weak signatures

A flaw was found in the way signature calculation was handled by cephx authentication protocol. An attacker having access to ceph cluster network, who is able to alter the message payload, was able to bypass signature checks done by cephx protocol...

6.5CVSS7.2AI score0.01902EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2018/07/11 6:21 p.m.6 views

ceph: cephx protocol is vulnerable to replay attack

It was found that cephx authentication protocol did not verify ceph clients correctly and was vulnerable to replay attack. Any attacker having access to the ceph cluster network who is also able to sniff packets on the network can use this vulnerability to authenticate with ceph service and perfo...

7.5CVSS7.2AI score0.01374EPSS
Exploits0References4
OSV
OSV
added 2018/07/10 2:29 p.m.2 views

DEBIAN-CVE-2018-1128

It was found that cephx authentication protocol did not verify ceph clients correctly and was vulnerable to replay attack. Any attacker having access to ceph cluster network who is able to sniff packets on network can use this vulnerability to authenticate with ceph service and perform actions...

7.5CVSS7.9AI score0.01374EPSS
Exploits0References1
Rows per page
Query Builder