Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntuUbuntuUSN-6613-1
HistoryJan 29, 2024 - 12:00 a.m.

Ceph vulnerability

2024-01-2900:00:00
ubuntu.com
12
ubuntu
ceph
vulnerability
authorization
post requests
file upload

6.8 Medium

AI Score

Confidence

High

JSON

Releases

  • Ubuntu 23.10
  • Ubuntu 22.04 LTS
  • Ubuntu 20.04 LTS
  • Ubuntu 18.04 ESM
  • Ubuntu 16.04 ESM
  • Ubuntu 14.04 ESM

Packages

  • ceph - distributed storage and file system

Details

Lucas Henry discovered that Ceph incorrectly handled specially
crafted POST requests. An uprivileged user could use this to
bypass Ceph’s authorization checks and upload a file to any bucket.

OSVersionArchitecturePackageVersionFilename
Ubuntu23.10noarchceph< 18.2.0-0ubuntu3.1UNKNOWN
Ubuntu23.10noarchceph-base< 18.2.0-0ubuntu3.1UNKNOWN
Ubuntu23.10noarchceph-base-dbgsym< 18.2.0-0ubuntu3.1UNKNOWN
Ubuntu23.10noarchceph-common< 18.2.0-0ubuntu3.1UNKNOWN
Ubuntu23.10noarchceph-common-dbgsym< 18.2.0-0ubuntu3.1UNKNOWN
Ubuntu23.10noarchceph-fuse< 18.2.0-0ubuntu3.1UNKNOWN
Ubuntu23.10noarchceph-fuse-dbgsym< 18.2.0-0ubuntu3.1UNKNOWN
Ubuntu23.10noarchceph-grafana-dashboards< 18.2.0-0ubuntu3.1UNKNOWN
Ubuntu23.10noarchceph-immutable-object-cache< 18.2.0-0ubuntu3.1UNKNOWN
Ubuntu23.10noarchceph-immutable-object-cache-dbgsym< 18.2.0-0ubuntu3.1UNKNOWN
Rows per page:
1-10 of 3931

Related

veracode 1
ubuntucve 1
osv 2
nessus 5
redhatcve 1
openvas 2
amazon 1
debiancve 1
ibm 1
redhat 3
debian 1
veracode
veracode
Improper Access Control
2023-10-10 03:23:18
ubuntucve
ubuntucve
CVE-2023-43040
2023-09-27 00:00:00
osv
osv
ceph vulnerability
2024-01-29 18:08:52
ceph - security update
2023-10-23 00:00:00
nessus
nessus
Amazon Linux 2 : ceph-common (ALAS-2023-2297)
2023-10-20 00:00:00
Ubuntu 16.04 ESM / 18.04 ESM / 20.04 LTS / 22.04 LTS / 23.10 : Ceph vulnerability (USN-6613-1)
2024-01-29 00:00:00
RHEL 8 / 9 : Red Hat Ceph Storage 5.3 Security update (Moderate) (RHSA-2024:0745)
2024-02-09 00:00:00
redhatcve
redhatcve
CVE-2023-43040
2023-09-27 06:24:45
openvas
openvas
Ubuntu: Security Advisory (USN-6613-1)
2024-01-30 00:00:00
Debian: Security Advisory (DLA-3629-1)
2023-10-24 00:00:00
amazon
amazon
Medium: ceph-common
2023-10-12 15:09:00
debiancve
debiancve
CVE-2023-43040
2023-10-12 17:03:58
ibm
ibm
Security Bulletin: IBM Storage Fusion HCI is vulnerable to unauthorized access due to a flaw in Ceph RGW.
2024-05-11 16:52:48
redhat
redhat
(RHSA-2024:0745) Moderate: Red Hat Ceph Storage 5.3 Security update
2024-02-08 16:19:54
(RHSA-2023:5693) Moderate: Red Hat Ceph Storage 6.1 security, enhancement, and bug fix update
2023-10-12 16:11:56
(RHSA-2023:6832) Important: Red Hat OpenShift Data Foundation 4.14.0 security, enhancement & bug fix update
2023-11-08 18:47:43
debian
debian
[SECURITY] [DLA 3629-1] ceph security update
2023-10-23 17:00:09

6.8 Medium

AI Score

Confidence

High

JSON
Related for USN-6613-1
veracode1ubuntucve1osv2nessus5redhatcve1openvas2amazon1debiancve1ibm1redhat3debian1