Lucene search
K

6 matches found

Tenable Nessus
Tenable Nessus
added 2019/04/02 12:0 a.m.36 views

GLSA-201904-06 : GlusterFS: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-201904-06 GlusterFS: Multiple Vulnerabilities Multiple vulnerabilities have been discovered in GlusterFS. Please review the referenced CVE identifiers for details. Impact : Please review the referenced CVE identifiers for details...

8.8CVSS6.5AI score0.05374EPSS
Exploits1References22
Tenable Nessus
Tenable Nessus
added 2019/01/03 12:0 a.m.30 views

Fedora 29 : glusterfs (2018-986f0b7fb0)

5.1 GA , security fixes for: CVE-2018-14651 CVE-2018-14652 CVE-2018-14653 CVE-2018-14654 CVE-2018-14659 CVE-2018-14660 CVE-2018-14661 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to...

8.8CVSS6.5AI score0.03225EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2018/11/07 12:0 a.m.46 views

RHEL 7 : Red Hat Virtualization (RHSA-2018:3470)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:3470 advisory. The redhat-virtualization-host packages provide the Red Hat Virtualization Host. These packages include redhat-release-virtualization-host,...

8.8CVSS7.2AI score0.04407EPSS
Exploits0References50
Tenable Nessus
Tenable Nessus
added 2018/11/01 12:0 a.m.89 views

RHEL 7 : glusterfs (RHSA-2018:3432)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:3432 advisory. - glusterfs: glusterfs server exploitable via symlinks to relative paths CVE-2018-14651 - glusterfs: Buffer overflow in features/locks...

8.8CVSS6.9AI score0.03225EPSS
Exploits0References36
CVE
CVE
added 2018/10/31 7:0 p.m.191 views

CVE-2018-14654

CVE-2018-14654 affects GlusterFS (up to 4.1.x) via the GF_XATTROP_ENTRY_IN_KEY path in the translator used during mounting, allowing a remote attacker with access to mounted volumes to create arbitrary, empty files on the server. Exploitation details are not provided in the given documents. Remed...

8.5CVSS7.1AI score0.0263EPSS
Exploits0References6Affected Software1
RedhatCVE
RedhatCVE
added 2018/10/31 8:22 a.m.25 views

CVE-2018-14654

A flaw was found in the way glusterfs server handles client requests. A remote, authenticated attacker could set arbitrary values for the GFXATTROPENTRYINKEY and GFXATTROPENTRYOUTKEY during xattrop file operation resulting in creation and deletion of arbitrary files on glusterfs server node...

8.5CVSS2.3AI score0.0263EPSS
Exploits0References2
Rows per page
Query Builder