Red Hat Ceph Storage 3.3

CPE Details

Red Hat Ceph Storage 3.3
redhat
ceph_storage
3.3
2019-11-13
17h59 +00:00
2019-11-13
17h59 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:redhat:ceph_storage:3.3:*:*:*:*:*:*:*

Informations

Vendor

redhat

Product

ceph_storage

Version

3.3

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2022-0670 2022-07-25 11h58 +00:00 A flaw was found in Openstack manilla owning a Ceph File system "share", which enables the owner to read/write any manilla share or entire file system. The vulnerability is due to a bug in the "volumes" plugin in Ceph Manager. This allows an attacker to compromise Confidentiality and Integrity of a file system. Fixed in RHCS 5.2 and Ceph 17.2.2.
9.1
Critical
CVE-2019-19337 2019-12-23 15h18 +00:00 A flaw was found in Red Hat Ceph Storage version 3 in the way the Ceph RADOS Gateway daemon handles S3 requests. An authenticated attacker can abuse this flaw by causing a remote denial of service by sending a specially crafted HTTP Content-Length header to the Ceph RADOS Gateway server.
6.5
Medium
CVE-2019-10222 2019-11-08 14h45 +00:00 A flaw was found in the Ceph RGW configuration with Beast as the front end handling client requests. An unauthenticated attacker could crash the Ceph RGW server by sending valid HTTP headers and terminating the connection, resulting in a remote denial of service for Ceph RGW clients.
7.5
High