CPE-DED25E0F-1602-40FF-AE40-8110E38CAED1 Detail

CPE Details

Red Hat Ceph Storage 5.0

Vendor

redhat

Product

ceph_storage

Version

5.0

Created

2021-12-13
15h24 +00:00

Modified

2022-01-04
14h18 +00:00

Official links

CPE NVD

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Notifications manage

List of Notifications

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Parameters

You can specify a title that will be retrieved in the alerts that will be sent out.

CPE ID

Planning

Month

Next run calculation

Day

Weekday

Hour

Minute

Creation date

Last execution

Next execution

Functionality requiring a connection

This feature, which allows you to receive alerts, is only active when you are logged into your account.

CPE Name: cpe:2.3:a:redhat:ceph_storage:5.0:::::::*

Informations

Vendor

redhat

Product

ceph_storage

Version

5.0

Related CVE

Open and find in CVE List

CVE ID	Published	Description	Score	Severity
CVE-2023-44487	2023-10-09 22h00 +00:00	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.	7.5	High
CVE-2023-0056	2023-03-23 00h00 +00:00	An uncontrolled resource consumption vulnerability was discovered in HAProxy which could crash the service. This issue could allow an authenticated remote attacker to run a specially crafted malicious server in an OpenShift cluster. The biggest impact is to availability.	6.5	Medium
CVE-2022-3854	2023-03-05 23h00 +00:00	A flaw was found in Ceph, relating to the URL processing on RGW backends. An attacker can exploit the URL processing by providing a null URL to crash the RGW, causing a denial of service.	6.5	Medium
CVE-2021-3979	2022-08-25 00h00 +00:00	A key length flaw was found in Red Hat Ceph Storage. An attacker can exploit the fact that the key length is incorrectly passed in an encryption algorithm to create a non random key, which is weaker and can be exploited for loss of confidentiality and integrity on encrypted disks.	6.5	Medium
CVE-2022-0670	2022-07-25 11h58 +00:00	A flaw was found in Openstack manilla owning a Ceph File system "share", which enables the owner to read/write any manilla share or entire file system. The vulnerability is due to a bug in the "volumes" plugin in Ceph Manager. This allows an attacker to compromise Confidentiality and Integrity of a file system. Fixed in RHCS 5.2 and Ceph 17.2.2.	9.1	Critical
CVE-2022-26148	2022-03-21 18h51 +00:00	An issue was discovered in Grafana through 7.3.4, when integrated with Zabbix. The Zabbix password can be found in the api_jsonrpc.php HTML source code. When the user logs in and allows the user to register, one can right click to view the source code and use Ctrl-F to search for password in api_jsonrpc.php to discover the Zabbix account password and URL address.	9.8	Critical
CVE-2021-4048	2021-12-08 20h24 +00:00	An out-of-bounds read flaw was found in the CLARRV, DLARRV, SLARRV, and ZLARRV functions in lapack through version 3.10.0, as also used in OpenBLAS before version 0.3.18. Specially crafted inputs passed to these functions could cause an application using lapack to crash or possibly disclose portions of its memory.	9.1	Critical

Red Hat Ceph Storage 5.0

CPE Details

CPE Name: cpe:2.3:a:redhat:ceph_storage:5.0:*:*:*:*:*:*:*

Informations

Vendor

Product

Version

Related CVE

CPE Name: cpe:2.3:a:redhat:ceph_storage:5.0:::::::*