Lucene search
K

13 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-6550

Malware in sbrugna...

6.5CVSS7.3AI score0.02747EPSS
Exploits0References10
UbuntuCve
UbuntuCve
added 2018/10/31 7:29 p.m.30 views

CVE-2018-14652

The Gluster file system through versions 3.12 and 4.1.4 is vulnerable to a buffer overflow in the 'features/index' translator via the code handling the 'GFXATTRCLRLKCMD' xattr in the 'plgetxattr' function. A remote authenticated attacker could exploit this on a mounted volume to cause a denial of...

6.5CVSS7AI score0.02747EPSS
Exploits0References5
Prion
Prion
added 2018/10/31 7:29 p.m.22 views

Buffer overflow

The Gluster file system through versions 3.12 and 4.1.4 is vulnerable to a buffer overflow in the 'features/index' translator via the code handling the 'GFXATTRCLRLKCMD' xattr in the 'plgetxattr' function. A remote authenticated attacker could exploit this on a mounted volume to cause a denial of...

4CVSS7.4AI score0.02747EPSS
Exploits0References7Affected Software5
NVD
NVD
added 2018/10/31 7:29 p.m.18 views

CVE-2018-14654

The Gluster file system through version 4.1.4 is vulnerable to abuse of the 'features/index' translator. A remote attacker with access to mount volumes could exploit this via the 'GFXATTROPENTRYINKEY' xattrop to create arbitrary, empty files on the target server...

8.5CVSS6.8AI score0.0263EPSS
Exploits0References6
NVD
NVD
added 2018/10/31 7:29 p.m.21 views

CVE-2018-14652

The Gluster file system through versions 3.12 and 4.1.4 is vulnerable to a buffer overflow in the 'features/index' translator via the code handling the 'GFXATTRCLRLKCMD' xattr in the 'plgetxattr' function. A remote authenticated attacker could exploit this on a mounted volume to cause a denial of...

6.5CVSS7.5AI score0.02747EPSS
Exploits0References7
OSV
OSV
added 2018/10/31 7:29 p.m.21 views

CVE-2018-14654

The Gluster file system through version 4.1.4 is vulnerable to abuse of the 'features/index' translator. A remote attacker with access to mount volumes could exploit this via the 'GFXATTROPENTRYINKEY' xattrop to create arbitrary, empty files on the target server...

6.5CVSS6.6AI score0.0263EPSS
Exploits0References6
OSV
OSV
added 2018/10/31 7:29 p.m.1 views

DEBIAN-CVE-2018-14654

The Gluster file system through version 4.1.4 is vulnerable to abuse of the 'features/index' translator. A remote attacker with access to mount volumes could exploit this via the 'GFXATTROPENTRYINKEY' xattrop to create arbitrary, empty files on the target server...

6.5CVSS6.8AI score0.0263EPSS
Exploits0References1
OSV
OSV
added 2018/10/31 7:29 p.m.2 views

UBUNTU-CVE-2018-14654

The Gluster file system through version 4.1.4 is vulnerable to abuse of the 'features/index' translator. A remote attacker with access to mount volumes could exploit this via the 'GFXATTROPENTRYINKEY' xattrop to create arbitrary, empty files on the target server...

6.5CVSS6.8AI score0.0263EPSS
Exploits0References6
OSV
OSV
added 2018/10/31 7:29 p.m.3 views

DEBIAN-CVE-2018-14652

The Gluster file system through versions 3.12 and 4.1.4 is vulnerable to a buffer overflow in the 'features/index' translator via the code handling the 'GFXATTRCLRLKCMD' xattr in the 'plgetxattr' function. A remote authenticated attacker could exploit this on a mounted volume to cause a denial of...

6.5CVSS7.4AI score0.02747EPSS
Exploits0References1
Cvelist
Cvelist
added 2018/10/31 7:0 p.m.28 views

CVE-2018-14652

The Gluster file system through versions 3.12 and 4.1.4 is vulnerable to a buffer overflow in the 'features/index' translator via the code handling the 'GFXATTRCLRLKCMD' xattr in the 'plgetxattr' function. A remote authenticated attacker could exploit this on a mounted volume to cause a denial of...

6.5CVSS7.4AI score0.02747EPSS
Exploits0References7
Debian CVE
Debian CVE
added 2018/10/31 7:0 p.m.24 views

CVE-2018-14652

The Gluster file system through versions 3.12 and 4.1.4 is vulnerable to a buffer overflow in the 'features/index' translator via the code handling the 'GFXATTRCLRLKCMD' xattr in the 'plgetxattr' function. A remote authenticated attacker could exploit this on a mounted volume to cause a denial of...

6.5CVSS7.7AI score0.02747EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2018/10/31 8:43 a.m.4 views

glusterfs: "features/index" translator can create arbitrary, empty files

A flaw was found in the way glusterfs server handles client requests. A remote, authenticated attacker could set arbitrary values for the GFXATTROPENTRYINKEY and GFXATTROPENTRYOUTKEY during xattrop file operation resulting in creation and deletion of arbitrary files on glusterfs server node...

8.5CVSS7.4AI score0.0263EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2018/10/31 12:0 a.m.7 views

PT-2018-12645 · Red Hat +1 · Gluster +1

Name of the Vulnerable Software and Affected Versions: Gluster file system versions through 4.1.4 Description: The issue allows a remote attacker with access to mount volumes to exploit the GF XATTROP ENTRY IN KEY xattrop, creating arbitrary, empty files on the target server via abuse of the...

8.8CVSS6.6AI score0.05374EPSS
Exploits1References71
Rows per page
Query Builder