CPE-08018323-56EE-48E4-847A-886A2B294A86 Detail

CPE Details

Red Hat Gluster Storage 3.5

Vendor

redhat

Product

gluster_storage

Version

3.5

Created

2021-01-25
17h41 +00:00

Modified

2021-01-25
17h41 +00:00

Official links

CPE NVD

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Notifications manage

List of Notifications

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Parameters

You can specify a title that will be retrieved in the alerts that will be sent out.

CPE ID

Planning

Month

Next run calculation

Day

Weekday

Hour

Minute

Creation date

Last execution

Next execution

Functionality requiring a connection

This feature, which allows you to receive alerts, is only active when you are logged into your account.

CPE Name: cpe:2.3:a:redhat:gluster_storage:3.5:::::::*

Informations

Vendor

redhat

Product

gluster_storage

Version

3.5

Related CVE

Open and find in CVE List

CVE ID	Published	Description	Score	Severity
CVE-2021-44142	2022-02-21 14h30 +00:00	The Samba vfs_fruit module uses extended file attributes (EA, xattr) to provide "...enhanced compatibility with Apple SMB clients and interoperability with a Netatalk 3 AFP fileserver." Samba versions prior to 4.13.17, 4.14.12 and 4.15.5 with vfs_fruit configured allow out-of-bounds heap read and write via specially crafted extended file attributes. A remote attacker with write access to extended file attributes can execute arbitrary code with the privileges of smbd, typically root.	8.8	High
CVE-2016-2124	2022-02-17 23h00 +00:00	A flaw was found in the way samba implemented SMB1 authentication. An attacker could use this flaw to retrieve the plaintext password sent over the wire even if Kerberos authentication was required.	5.9	Medium
CVE-2020-25717	2022-02-17 23h00 +00:00	A flaw was found in the way Samba maps domain users to local users. An authenticated attacker could use this flaw to cause possible privilege escalation.	8.1	High
CVE-2020-10763	2020-11-24 15h17 +00:00	An information-disclosure flaw was found in the way Heketi before 10.1.0 logs sensitive information. This flaw allows an attacker with local access to the Heketi server to read potentially sensitive information such as gluster-block passwords.	5.5	Medium
CVE-2018-14654	2018-10-31 18h00 +00:00	The Gluster file system through version 4.1.4 is vulnerable to abuse of the 'features/index' translator. A remote attacker with access to mount volumes could exploit this via the 'GF_XATTROP_ENTRY_IN_KEY' xattrop to create arbitrary, empty files on the target server.	6.5	Medium
CVE-2018-1088	2018-04-18 16h00 +00:00	A privilege escalation flaw was found in gluster 3.x snapshot scheduler. Any gluster client allowed to mount gluster volumes could also mount shared gluster storage volume and escalate privileges by scheduling malicious cronjob via symlink.	8.1	High

Red Hat Gluster Storage 3.5

CPE Details

CPE Name: cpe:2.3:a:redhat:gluster_storage:3.5:*:*:*:*:*:*:*

Informations

Vendor

Product

Version

Related CVE

CPE Name: cpe:2.3:a:redhat:gluster_storage:3.5:::::::*