73 matches found
EUVD-2020-20285
Malware in sbrugna...
EUVD-2020-0103
Malware in sbrugna...
EUVD-2022-5403
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2016-6519
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cross-site scripting XSS vulnerability in the Shares overview in Openstack Manila before 2.5.1 allows remote authenticated users to inject arbitrary web script ...
Linux Distros Unpatched Vulnerability : CVE-2020-27781
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - User credentials can be manipulated and stolen by Native CephFS consumers of OpenStack Manila, resulting in potential privilege escalation. An Open Stack Manila...
RHEL 7 : openstack-manila-ui (RHSA-2016:2116)
The remote Redhat Enterprise Linux 7 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2016:2116 advisory. OpenStack's File Share Service manila provides the means to easily provision shared file systems that can be consumed by multiple instances. These...
RHSA-2020:2165 Red Hat Security Advisory: openstack-manila security update
Bulletin has no description...
RHSA-2020:2729 Red Hat Security Advisory: openstack-manila and openstack-manila security update
Bulletin has no description...
RHSA-2020:1326 Red Hat Security Advisory: openstack-manila security update
Bulletin has no description...
RHSA-2016:2115 Red Hat Security Advisory: openstack-manila-ui security update
Bulletin has no description...
RHSA-2016:2116 Red Hat Security Advisory: openstack-manila-ui security update
Bulletin has no description...
RHSA-2016:2117 Red Hat Security Advisory: openstack-manila-ui security update
Bulletin has no description...
MGASA-2023-0139 Updated ceph packages fix security vulnerability
Openstack manilla owning a Ceph File system "share", enables the owner to read/write any manilla share or entire file system. The vulnerability is due to a bug in the "volumes" plugin in Ceph Manager. This allows an attacker to compromise Confidentiality and Integrity of a file system...
SUSE CVE-2020-9543
OpenStack Manila =8.0.0 =9.0.0 9.1.1 allows attackers to view, update, delete, or share resources that do not belong to them, because of a context-free lookup of a UUID. Attackers may also create resources, such as shared file systems and groups of shares on such share networks...
SUSE CVE-2020-27781
User credentials can be manipulated and stolen by Native CephFS consumers of OpenStack Manila, resulting in potential privilege escalation. An Open Stack Manila user can request access to a share to an arbitrary cephx user, including existing users. The access key is retrieved via the interface...
SUSE CVE-2022-0670
A flaw was found in Openstack manilla owning a Ceph File system "share", which enables the owner to read/write any manilla share or entire file system. The vulnerability is due to a bug in the "volumes" plugin in Ceph Manager. This allows an attacker to compromise Confidentiality and Integrity of...
A flaw was found in Openstack manilla owning a Ceph File system "share" which enables the owner to read/write any manilla share or entire file system. The vulnerability is due to a bug in the "volumes" plugin in Ceph Manager. This allows an attacker to compromise Confidentiality and Integrity of a file system. Fixed in RHCS 5.2 and Ceph 17.2.2.
...
DEBIAN-CVE-2022-0670
A flaw was found in Openstack manilla owning a Ceph File system "share", which enables the owner to read/write any manilla share or entire file system. The vulnerability is due to a bug in the "volumes" plugin in Ceph Manager. This allows an attacker to compromise Confidentiality and Integrity of...
UBUNTU-CVE-2022-0670
A flaw was found in Openstack manilla owning a Ceph File system "share", which enables the owner to read/write any manilla share or entire file system. The vulnerability is due to a bug in the "volumes" plugin in Ceph Manager. This allows an attacker to compromise Confidentiality and Integrity of...
GHSA-JX7V-GMQC-6XRJ OpenStack Manila Unprivileged users can retrieve, use and manipulate share networks
OpenStack Manila =8.0.0 =9.0.0 9.1.1 allows attackers to view, update, delete, or share resources that do not belong to them, because of a context-free lookup of a UUID. Attackers may also create resources, such as shared file systems and groups of shares on such share networks...