CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2020-3171

Malware in sbrugna...

6.5CVSS6.9AI score0.00428EPSS

Exploits0References14

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2021-26840

Malware in sbrugna...

6.5CVSS6AI score0.00857EPSS

Exploits0References13

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2024-54839

Malicious code in bioql PyPI...

8.1CVSS7.8AI score0.00043EPSS

Tenable Nessus•added 2025/08/22 12:0 a.m.•1 views

Ubuntu 14.04 LTS / 16.04 LTS : Ceph vulnerabilities (USN-7706-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7706-1 advisory. It was discovered that Ceph incorrectly handled read-only permissions. An authenticated attacker could use this issue to obtain dm-crypt...

6.5CVSS6.6AI score0.00857EPSS

Tenable Nessus•added 2025/08/12 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2020-10753

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the Red Hat Ceph Storage RadosGW Ceph Object Gateway. The vulnerability is related to the injection of HTTP headers via a CORS ExposeHeader...

6.5CVSS6.7AI score0.00428EPSS

NVD•added 2025/07/30 8:15 p.m.•2 views

CVE-2024-48916

Ceph is a distributed object, block, and file storage platform. In versions 19.2.3 and below, it is possible to send an JWT that has "none" as JWT alg. And by doing so the JWT signature is not checked. The vulnerability is most likely in the RadosGW OIDC provider. As of time of publication, a kno...

8.1CVSS0.00043EPSS

OSV•added 2025/07/30 7:45 p.m.•3 views

CVE-2024-48916 Ceph is vulnerable to authentication bypass through RadosGW

8.1CVSS7.7AI score0.00043EPSS

Debian CVE•added 2025/07/30 7:45 p.m.•18 views

CVE-2024-48916

8.1CVSS7.5AI score0.00043EPSS

Exploits0

Cvelist•added 2025/07/30 7:45 p.m.•9 views

CVE-2024-48916 Ceph is vulnerable to authentication bypass through RadosGW

8.1CVSS0.00043EPSS

Vulnrichment•added 2025/07/30 7:45 p.m.•2 views

CVE-2024-48916 Ceph is vulnerable to authentication bypass through RadosGW

8.1CVSS9AI score0.00043EPSS

CVE•added 2025/07/30 7:45 p.m.•85 views

CVE-2024-48916

CVE-2024-48916 affects Ceph’s RadosGW OIDC provider used by IBM Storage Ceph. In versions 19.2.3 and below, it is possible to submit a JWT with the alg set to “none,” causing the signature to be unchecked (authentication bypass). IBM’s bulletin lists affected IBM Storage Ceph versions: 6.0, 6.1z0...

8.1CVSS8.9AI score0.00043EPSS

Mageia•added 2025/01/14 12:9 a.m.•10 views

Updated ceph packages fix security vulnerability

Authentication bypass in CEPH RadosGW. CVE-2024-48916...

8.1CVSS7AI score0.00043EPSS

OSV•added 2025/01/14 12:9 a.m.•9 views

MGASA-2025-0011 Updated ceph packages fix security vulnerability

Authentication bypass in CEPH RadosGW. CVE-2024-48916...

8.1CVSS6.5AI score0.00043EPSS

Ubuntu•added 2025/01/06 1:41 p.m.•152 views

USN-7182-1: Ceph vulnerability

It was discovered that Ceph incorrectly handled unsupported JWT algorithms in the RadosGW gateway. An attacker could possibly use this issue to bypass certain authentication checks and restrictions...

8.1CVSS7.5AI score0.00043EPSS

Exploits0

OSV•added 2025/01/06 1:41 p.m.•0 views

USN-7182-1 ceph vulnerability

8.1CVSS7.1AI score0.00043EPSS

Tenable Nessus•added 2025/01/06 12:0 a.m.•14 views

Ubuntu 22.04 LTS / 24.04 LTS / 24.10 : Ceph vulnerability (USN-7182-1)

The remote Ubuntu 22.04 LTS / 24.04 LTS / 24.10 host has packages installed that are affected by a vulnerability as referenced in the USN-7182-1 advisory. It was discovered that Ceph incorrectly handled unsupported JWT algorithms in the RadosGW gateway. An attacker could possibly use this issue t...

8.1CVSS7.7AI score0.00043EPSS

SUSE CVE•added 2024/12/03 12:21 a.m.•1 views

SUSE CVE-2024-48916

8.1CVSS6.9AI score0.00043EPSS