Lucene search
K

78 matches found

OSV
OSV
added 2023/09/26 1:26 p.m.42 views

RLSA-2023:5244 Important: kernel security, bug fix, and enhancement update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: ipvlan: out-of-bounds write caused by unclear skb-cb CVE-2023-3090 kernel: UAF in nftables when nftsetlookupglobal triggered after handling named and anonymous sets in batch requests...

7.8CVSS8.2AI score0.05794EPSS
Exploits7References9
RedHat Linux
RedHat Linux
added 2023/09/19 3:9 p.m.153 views

Important: Red Hat Security Advisory: kernel security, bug fix, and enhancement update

An update for kernel is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

8.8CVSS7.2AI score0.54577EPSS
Exploits8References9
Rockylinux
Rockylinux
added 2023/04/06 3:54 p.m.68 views

kernel security and bug fix update

An update is available for kernel. This update affects Rocky Linux SIG Cloud 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The kernel packages contain the Linux kernel, the core of any Linux...

7.8CVSS7.6AI score0.06346EPSS
Exploits5
RedHat Linux
RedHat Linux
added 2023/02/28 8:24 a.m.88 views

Important: Red Hat Security Advisory: kernel security and bug fix update

An update for kernel is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

7.8CVSS6.8AI score0.06346EPSS
Exploits5References6
AlmaLinux
AlmaLinux
added 2023/02/28 12:0 a.m.86 views

Important: kernel security and bug fix update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: use-after-free caused by l2capreassemblesdu in net/bluetooth/l2capcore.c CVE-2022-3564 kernel: stack overflow in doprocdointvec and procskipspaces CVE-2022-4378 kernel: use-after-free in...

7.8CVSS7.6AI score0.06346EPSS
Exploits5References12
OSV
OSV
added 2023/02/28 12:0 a.m.47 views

ALSA-2023:0951 Important: kernel security and bug fix update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: use-after-free caused by l2capreassemblesdu in net/bluetooth/l2capcore.c CVE-2022-3564 kernel: stack overflow in doprocdointvec and procskipspaces CVE-2022-4378 kernel: use-after-free in...

7.8CVSS7.4AI score0.06346EPSS
Exploits5References12
SUSE CVE
SUSE CVE
added 2023/02/15 3:52 a.m.3 views

SUSE CVE-2020-27781

User credentials can be manipulated and stolen by Native CephFS consumers of OpenStack Manila, resulting in potential privilege escalation. An Open Stack Manila user can request access to a share to an arbitrary cephx user, including existing users. The access key is retrieved via the interface...

7.3CVSS7.6AI score0.0031EPSS
Exploits0References18
RedHat Linux
RedHat Linux
added 2022/12/07 8:27 p.m.27 views

Moderate: Red Hat Security Advisory: Red Hat OpenStack 16.1.9 (openstack-tripleo-heat-templates) security update

An update for openstack-tripleo-heat-templates is now available for Red Hat OpenStack Platform 16.1.9 Train for Red Hat Enterprise Linux RHEL 8.2. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which...

4.3CVSS5.8AI score0.00754EPSS
Exploits0References33
RedHat Linux
RedHat Linux
added 2021/11/15 11:19 a.m.49 views

Important: Red Hat Security Advisory: kernel security, bug fix, and enhancement update

An update for kernel is now available for Red Hat Enterprise Linux 8.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

9.8CVSS6.8AI score0.57853EPSS
Exploits2References4
OSV
OSV
added 2021/09/15 9:41 a.m.33 views

ALSA-2021:3548 Moderate: kernel security, bug fix, and enhancement update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: SVM nested virtualization issue in KVM AVIC support CVE-2021-3653 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related...

8.8CVSS7.9AI score0.00413EPSS
Exploits1References1
RedHat Linux
RedHat Linux
added 2021/05/06 7:4 p.m.5 views

ceph: User credentials can be manipulated and stolen by Native CephFS consumers of OpenStack Manila

User credentials can be manipulated and stolen by Native CephFS consumers of OpenStack Manila, resulting in potential privilege escalation. An Open Stack Manila user can request access to a share to an arbitrary cephx user, including existing users. The access key is retrieved via the interface...

7.1CVSS7.2AI score0.0031EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2021/02/02 12:0 a.m.23 views

Huawei EulerOS: Security Advisory for ceph (EulerOS-SA-2021-1136)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.1CVSS6.9AI score0.01627EPSS
Exploits0References2
Veracode
Veracode
added 2021/01/14 4:52 a.m.26 views

Privilege Escalation

ceph is vulnerable to privilege escalation. The vulnerability exists as user credentials can be manipulated and stolen by Native CephFS consumers of OpenStack Manila...

7.1CVSS4.4AI score0.0031EPSS
Exploits0References7Affected Software12
NVD
NVD
added 2020/12/18 9:15 p.m.19 views

CVE-2020-27781

User credentials can be manipulated and stolen by Native CephFS consumers of OpenStack Manila, resulting in potential privilege escalation. An Open Stack Manila user can request access to a share to an arbitrary cephx user, including existing users. The access key is retrieved via the interface...

7.1CVSS7.1AI score0.0031EPSS
Exploits0References4
Prion
Prion
added 2020/12/18 9:15 p.m.23 views

Privilege escalation

User credentials can be manipulated and stolen by Native CephFS consumers of OpenStack Manila, resulting in potential privilege escalation. An Open Stack Manila user can request access to a share to an arbitrary cephx user, including existing users. The access key is retrieved via the interface...

3.6CVSS6.7AI score0.0031EPSS
Exploits0References4Affected Software5
Cvelist
Cvelist
added 2020/12/18 12:0 a.m.30 views

CVE-2020-27781

User credentials can be manipulated and stolen by Native CephFS consumers of OpenStack Manila, resulting in potential privilege escalation. An Open Stack Manila user can request access to a share to an arbitrary cephx user, including existing users. The access key is retrieved via the interface...

6.9AI score0.0031EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2020/12/18 12:0 a.m.38 views

CVE-2020-27781

User credentials can be manipulated and stolen by Native CephFS consumers of OpenStack Manila, resulting in potential privilege escalation. An Open Stack Manila user can request access to a share to an arbitrary cephx user, including existing users. The access key is retrieved via the interface...

7.1CVSS7.2AI score0.0031EPSS
Exploits0References3
CVE
CVE
added 2020/12/18 12:0 a.m.288 views

CVE-2020-27781

CVE-2020-27781 affects Ceph and specifically allows privilege escalation via Native CephFS consumers of OpenStack Manila. An OpenStack Manila user can request access to a share for an arbitrary cephx user; the interface drivers reveal the access key, enabling all users in the requesting project t...

7.1CVSS6.8AI score0.0031EPSS
Exploits0References4Affected Software1
Debian CVE
Debian CVE
added 2020/12/18 12:0 a.m.26 views

CVE-2020-27781

User credentials can be manipulated and stolen by Native CephFS consumers of OpenStack Manila, resulting in potential privilege escalation. An Open Stack Manila user can request access to a share to an arbitrary cephx user, including existing users. The access key is retrieved via the interface...

7.1CVSS7.2AI score0.0031EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2020/12/18 12:0 a.m.44 views

CVE-2020-27781

User credentials can be manipulated and stolen by Native CephFS consumers of OpenStack Manila, resulting in potential privilege escalation. An Open Stack Manila user can request access to a share to an arbitrary cephx user, including existing users. The access key is retrieved via the interface...

7.1CVSS7.1AI score0.0031EPSS
Exploits0
Rows per page
Query Builder