EUVD-2018-17264

Malware in sbrugna...

CVE-2024-21988 CVE-2024-21988 SSH Cryptographic Implementation Vulnerability in StorageGRID (formerly StorageGRID Webscale)

StorageGRID formerly StorageGRID Webscale versions prior to 11.7.0.9 and 11.8.0.5 are susceptible to disclosure of sensitive information via complex MiTM attacks due to a vulnerability in the SSH cryptographic implementation...

CVE-2023-27318 Denial of Service Vulnerability in StorageGRID (formerly StorageGRID Webscale)

StorageGRID formerly StorageGRID Webscale versions 11.6.0 through 11.6.0.13 are susceptible to a Denial of Service DoS vulnerability. A successful exploit could lead to a crash of the Local Distribution Router LDR service...

CVE-2022-23238

Linux deployments of StorageGRID formerly StorageGRID Webscale versions 11.6.0 through 11.6.0.2 deployed with a Linux kernel version less than 4.7.0 are susceptible to a vulnerability which could allow a remote unauthenticated attacker to view limited metrics information and modify alert email...

CVE-2022-23232

Summary of CVE-2022-23232 (StorageGRID): StorageGRID (formerly StorageGRID Webscale) versions prior to 11.6.0 are vulnerable to an access-control issue where disabled, expired, or locked external user accounts could access S3 data they previously could view. In 11.6.0, the product changes behavio...

CVE-2018-5495

All StorageGRID Webscale versions are susceptible to a vulnerability which could permit an unauthenticated attacker to communicate with systems on the same network as the StorageGRID Webscale Admin Node via HTTP or to take over services on the Admin Node...

Code injection

All StorageGRID Webscale versions are susceptible to a vulnerability which could permit an unauthenticated attacker to communicate with systems on the same network as the StorageGRID Webscale Admin Node via HTTP or to take over services on the Admin Node...

CVE-2018-5495

All StorageGRID Webscale versions are susceptible to a vulnerability which could permit an unauthenticated attacker to communicate with systems on the same network as the StorageGRID Webscale Admin Node via HTTP or to take over services on the Admin Node...

CVE-2018-5495

The CVE-2018-5495 entry concerns StorageGRID Webscale. Affected product: StorageGRID Webscale Admin Node (all versions). Vulnerability: unauthenticated attacker on the same network can communicate with Admin Node systems via HTTP or take over services on the Admin Node. Underlying impact is confi...

Code injection

NetApp StorageGRID Webscale 10.2.x before 10.2.2.3, 10.3.x before 10.3.0.4, and 10.4.x before 10.4.0.2 allow remote authenticated users to delete arbitrary objects via unspecified vectors...

CVE-2017-12422

NetApp StorageGRID Webscale 10.2.x before 10.2.2.3, 10.3.x before 10.3.0.4, and 10.4.x before 10.4.0.2 allow remote authenticated users to delete arbitrary objects via unspecified vectors...

CVE-2017-12422

NetApp StorageGRID Webscale 10.2.x before 10.2.2.3, 10.3.x before 10.3.0.4, and 10.4.x before 10.4.0.2 allow remote authenticated users to delete arbitrary objects via unspecified vectors...

CVE-2017-12422

NetApp StorageGRID Webscale is affected. Versions 10.2.x prior to 10.2.2.3, 10.3.x prior to 10.3.0.4, and 10.4.x prior to 10.4.0.2 allow remote authenticated users to delete arbitrary objects via unspecified vectors. The primary impact is unauthorized deletion of objects; the underlying root caus...