Linux Foundation Ceph 15.2.0

CPE Details

Linux Foundation Ceph 15.2.0
linuxfoundation
ceph
15.2.0
2020-05-04
16h21 +00:00
2020-05-04
16h21 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:linuxfoundation:ceph:15.2.0:*:*:*:*:*:*:*

Informations

Vendor

linuxfoundation

Product

ceph

Version

15.2.0

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2022-0670 2022-07-25 11h58 +00:00 A flaw was found in Openstack manilla owning a Ceph File system "share", which enables the owner to read/write any manilla share or entire file system. The vulnerability is due to a bug in the "volumes" plugin in Ceph Manager. This allows an attacker to compromise Confidentiality and Integrity of a file system. Fixed in RHCS 5.2 and Ceph 17.2.2.
9.1
Critique
CVE-2020-10736 2020-06-22 15h49 +00:00 An authorization bypass vulnerability was found in Ceph versions 15.2.0 before 15.2.2, where the ceph-mon and ceph-mgr daemons do not properly restrict access, resulting in gaining access to unauthorized resources. This flaw allows an authenticated client to modify the configuration and possibly conduct further attacks.
8
Haute