Lucene search
K

16 matches found

OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.20 views

SUSE: Security Advisory (SUSE-SU-2019:2049-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.6AI score0.02946EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.25 views

SUSE: Security Advisory (SUSE-SU-2019:0499-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.2AI score0.02136EPSS
Exploits1References7
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.23 views

SUSE: Security Advisory (SUSE-SU-2019:2364-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.7AI score0.00536EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2019/09/16 12:0 a.m.36 views

SUSE SLED12 / SLES12 Security Update : ceph (SUSE-SU-2019:2364-1)

This update for ceph to version 12.2.12-594-g02236657ca fixes the following issues : Security issues fixed : CVE-2018-16889: Fixed missing sanitation of customer encryption keys from log output in v4 auth. bsc1121567 Note that Tenable Network Security has extracted the preceding description block...

7.5CVSS6.6AI score0.00536EPSS
Exploits1References5
OSV
OSV
added 2019/09/12 9:23 a.m.7 views

SUSE-SU-2019:2364-1 Security update for ceph

This update for ceph to version 12.2.12-594-g02236657ca fixes the following issues: Security issues fixed: - CVE-2018-16889: Fixed missing sanitation of customer encryption keys from log output in v4 auth. bsc1121567...

7.5CVSS6.6AI score0.00536EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2019/08/21 3:21 p.m.128 views

Moderate: Red Hat Security Advisory: Red Hat Ceph Storage 3.3 security, bug fix, and enhancement update

An update is now available for Red Hat Ceph Storage 3.3 on Ubuntu 16.04. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

7.5CVSS6.6AI score0.02136EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2019/08/21 3:11 p.m.122 views

Moderate: Red Hat Security Advisory: Red Hat Ceph Storage 3.3 security, bug fix, and enhancement update

An update is now available for Red Hat Ceph Storage 3.3 on Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

7.5CVSS6.6AI score0.02136EPSS
Exploits1References76
Tenable Nessus
Tenable Nessus
added 2019/08/12 12:0 a.m.37 views

SUSE SLED15 / SLES15 Security Update : ceph (SUSE-SU-2019:2049-1)

This update for ceph fixes the following issues : Security issues fixed : CVE-2019-3821: civetweb: fix file descriptor leak bsc1125080 CVE-2018-16889: rgw: sanitize customer encryption keys from log output in v4 auth bsc1121567 Non-security issues fixed: install grafana dashboards world readable...

7.5CVSS6.6AI score0.02946EPSS
Exploits1References19
OSV
OSV
added 2019/08/05 3:56 p.m.12 views

SUSE-SU-2019:2049-1 Security update for ceph

This update for ceph fixes the following issues: Security issues fixed: - CVE-2019-3821: civetweb: fix file descriptor leak bsc1125080 - CVE-2018-16889: rgw: sanitize customer encryption keys from log output in v4 auth bsc1121567 Non-security issues fixed: - install grafana dashboards world...

7.5CVSS6.6AI score0.02946EPSS
Exploits1References17
Ubuntu
Ubuntu
added 2019/06/25 11:40 a.m.68 views

USN-4035-1: Ceph vulnerabilities

It was discovered that Ceph incorrectly handled read only permissions. An authenticated attacker could use this issue to obtain dm-crypt encryption keys. This issue only affected Ubuntu 16.04 LTS. CVE-2018-14662 It was discovered that Ceph incorrectly handled certain OMAPs holding bucket indices...

7.5CVSS6.6AI score0.02946EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2019/05/15 12:0 a.m.38 views

Photon OS 2.0: Ceph PHSA-2019-2.0-0154

An update of the ceph package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2019-2.0-0154. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid125078;...

7.5CVSS6.2AI score0.00536EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2019/03/11 12:0 a.m.35 views

openSUSE Security Update : ceph (openSUSE-2019-306)

This update for ceph fixes the following issues : Security issues fixed : - CVE-2018-14662: mon: limit caps allowed to access the config store bsc1111177 - CVE-2018-16846: rgw: enforce bounds on max-keys/max-uploads/max-parts bsc1114710 - CVE-2018-16889: rgw: sanitize customer encryption keys fro...

7.5CVSS6.2AI score0.02136EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2019/02/27 12:0 a.m.40 views

SUSE SLED12 / SLES12 Security Update : ceph (SUSE-SU-2019:0499-1)

This update for ceph fixes the following issues : Security issues fixed : CVE-2018-14662: mon: limit caps allowed to access the config store bsc1111177 CVE-2018-16846: rgw: enforce bounds on max-keys/max-uploads/max-parts bsc1114710 CVE-2018-16889: rgw: sanitize customer encryption keys from log...

7.5CVSS6.3AI score0.02136EPSS
Exploits1References11
Tenable Nessus
Tenable Nessus
added 2019/02/20 12:0 a.m.54 views

Fedora 29 : 1:ceph (2019-6a2e72916a)

New release 1:12.2.11-1 notes=Security fix for CVE-2018-14662, CVE-2018-16846, CVE-2018-16889 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as...

7.5CVSS6.3AI score0.02136EPSS
Exploits1References4
CVE
CVE
added 2019/01/28 2:0 p.m.220 views

CVE-2018-16889

CVE-2018-16889 concerns Ceph's v4 authentication logging: encryption keys are not sanitized in debug/log output, potentially leaking key material. The vulnerability applies to Ceph versions up to 13.2.4 and is documented across multiple advisories (SUSE/SU-2019:2049-1, SUSE-SU-2019:2364-1, RHSA-2...

7.5CVSS6.6AI score0.00536EPSS
Exploits1References5Affected Software1
Debian CVE
Debian CVE
added 2019/01/28 2:0 p.m.28 views

CVE-2018-16889

Ceph does not properly sanitize encryption keys in debug logging for v4 auth. This results in the leaking of encryption key information in log files via plaintext. Versions up to v13.2.4 are vulnerable...

7.5CVSS6.5AI score0.00536EPSS
Exploits1
Rows per page
Query Builder