Ceph Storage@* Security Vulnerabilities and Issues — Ceph Storage@* CVE List

Lucene search

RedhatCeph Storage*

3 matches found

CVE•added 2022/07/25 2:15 p.m.•129 views

CVE-2022-0670

A flaw was found in Openstack manilla owning a Ceph File system "share", which enables the owner to read/write any manilla share or entire file system. The vulnerability is due to a bug in the "volumes" plugin in Ceph Manager. This allows an attacker to compromise Confidentiality and Integrity of a...

9.1CVSS8.9AI score0.00169EPSS

CVE•added 2019/12/23 5:15 p.m.•118 views

CVE-2019-19337

A flaw was found in Red Hat Ceph Storage version 3 in the way the Ceph RADOS Gateway daemon handles S3 requests. An authenticated attacker can abuse this flaw by causing a remote denial of service by sending a specially crafted HTTP Content-Length header to the Ceph RADOS Gateway server.

6.5CVSS6.2AI score0.00552EPSS

CVE•added 2016/10/03 6:59 p.m.•54 views

CVE-2016-7031

The RGW code in Ceph before 10.0.1, when authenticated-read ACL is applied to a bucket, allows remote attackers to list the bucket contents via a URL.

7.5CVSS7.3AI score0.00514EPSS