72 matches found
EUVD-2020-20285
Malware in sbrugna...
EUVD-2020-0103
Malware in sbrugna...
EUVD-2022-5403
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2016-6519
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cross-site scripting XSS vulnerability in the Shares overview in Openstack Manila before 2.5.1 allows remote authenticated users to inject arbitrary web script ...
Linux Distros Unpatched Vulnerability : CVE-2020-27781
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - User credentials can be manipulated and stolen by Native CephFS consumers of OpenStack Manila, resulting in potential privilege escalation. An Open Stack Manila...
RHEL 7 : openstack-manila-ui (RHSA-2016:2116)
The remote Redhat Enterprise Linux 7 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2016:2116 advisory. OpenStack's File Share Service manila provides the means to easily provision shared file systems that can be consumed by multiple instances. These...
RHSA-2020:2165 Red Hat Security Advisory: openstack-manila security update
Bulletin has no description...
RHSA-2020:2729 Red Hat Security Advisory: openstack-manila and openstack-manila security update
Bulletin has no description...
RHSA-2020:1326 Red Hat Security Advisory: openstack-manila security update
Bulletin has no description...
RHSA-2016:2115 Red Hat Security Advisory: openstack-manila-ui security update
Bulletin has no description...
RHSA-2016:2116 Red Hat Security Advisory: openstack-manila-ui security update
Bulletin has no description...
RHSA-2016:2117 Red Hat Security Advisory: openstack-manila-ui security update
Bulletin has no description...
MGASA-2023-0139 Updated ceph packages fix security vulnerability
Openstack manilla owning a Ceph File system "share", enables the owner to read/write any manilla share or entire file system. The vulnerability is due to a bug in the "volumes" plugin in Ceph Manager. This allows an attacker to compromise Confidentiality and Integrity of a file system...
SUSE CVE-2020-9543
OpenStack Manila =8.0.0 =9.0.0 9.1.1 allows attackers to view, update, delete, or share resources that do not belong to them, because of a context-free lookup of a UUID. Attackers may also create resources, such as shared file systems and groups of shares on such share networks...
SUSE CVE-2020-27781
User credentials can be manipulated and stolen by Native CephFS consumers of OpenStack Manila, resulting in potential privilege escalation. An Open Stack Manila user can request access to a share to an arbitrary cephx user, including existing users. The access key is retrieved via the interface...
SUSE CVE-2022-0670
A flaw was found in Openstack manilla owning a Ceph File system "share", which enables the owner to read/write any manilla share or entire file system. The vulnerability is due to a bug in the "volumes" plugin in Ceph Manager. This allows an attacker to compromise Confidentiality and Integrity of...
A flaw was found in Openstack manilla owning a Ceph File system "share" which enables the owner to read/write any manilla share or entire file system. The vulnerability is due to a bug in the "volumes" plugin in Ceph Manager. This allows an attacker to compromise Confidentiality and Integrity of a file system. Fixed in RHCS 5.2 and Ceph 17.2.2.
...
DEBIAN-CVE-2022-0670
A flaw was found in Openstack manilla owning a Ceph File system "share", which enables the owner to read/write any manilla share or entire file system. The vulnerability is due to a bug in the "volumes" plugin in Ceph Manager. This allows an attacker to compromise Confidentiality and Integrity of...
UBUNTU-CVE-2022-0670
A flaw was found in Openstack manilla owning a Ceph File system "share", which enables the owner to read/write any manilla share or entire file system. The vulnerability is due to a bug in the "volumes" plugin in Ceph Manager. This allows an attacker to compromise Confidentiality and Integrity of...
OpenStack Manila Unprivileged users can retrieve, use and manipulate share networks
OpenStack Manila =8.0.0 =9.0.0 9.1.1 allows attackers to view, update, delete, or share resources that do not belong to them, because of a context-free lookup of a UUID. Attackers may also create resources, such as shared file systems and groups of shares on such share networks...