Known Vulnerabilities for Glusterfs by Gluster
Listed below are 10 of the newest known vulnerabilities associated with "Glusterfs" by "Gluster".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2023-26253 json | In Gluster GlusterFS 11.0, there is an xlators/mount/fuse/src/fuse-bridge.c notify stack-based buffer over-read. | 7.5 - HIGH | 2023-02-21 | 2023-11-07 |
| CVE-2022-48340 json | In Gluster GlusterFS 11.0, there is an xlators/cluster/dht/src/dht-common.c dht_setxattr_mds_cbk use-after-free. | 7.5 - HIGH | 2023-02-21 | 2023-11-07 |
| CVE-2018-14661 json | It was found that usage of snprintf function in feature/locks translator of glusterfs server 3.8.4, as shipped with Red Hat G... | 6.5 - MEDIUM | 2018-10-31 | 2023-02-12 |
| CVE-2018-14660 json | A flaw was found in glusterfs server through versions 4.1.4 and 3.1.2 which allowed repeated usage of GF_META_LOCK_KEY xattr.... | 6.5 - MEDIUM | 2018-11-01 | 2023-02-13 |
| CVE-2018-14651 json | It was found that the fix for CVE-2018-10927, CVE-2018-10928, CVE-2018-10929, CVE-2018-10930, and CVE-2018-10926 was incomple... | 8.8 - HIGH | 2018-10-31 | 2023-02-12 |
| CVE-2018-10930 json | A flaw was found in RPC request using gfs3_rename_req in glusterfs server. An authenticated attacker could use this flaw to w... | 6.5 - MEDIUM | 2018-09-04 | 2021-12-10 |
| CVE-2018-10929 json | A flaw was found in RPC request using gfs2_create_req in glusterfs server. An authenticated attacker could use this flaw to c... | 8.8 - HIGH | 2018-09-04 | 2022-04-12 |
| CVE-2018-10928 json | A flaw was found in RPC request using gfs3_symlink_req in glusterfs server which allows symlink destinations to point to file... | 8.8 - HIGH | 2018-09-04 | 2022-04-12 |
| CVE-2018-10927 json | A flaw was found in RPC request using gfs3_lookup_req in glusterfs server. An authenticated attacker could use this flaw to l... | 8.1 - HIGH | 2018-09-04 | 2022-04-12 |
| CVE-2018-10926 json | A flaw was found in RPC request using gfs3_mknod_req supported by glusterfs server. An authenticated attacker could use this ... | 8.8 - HIGH | 2018-09-04 | 2022-04-12 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Gluster | Glusterfs | 6.1 | |||
| Application | Gluster | Glusterfs | 6.0 | |||
| Application | Gluster | Glusterfs | 6.0 | |||
| Application | Gluster | Glusterfs | 6.0 | |||
| Application | Gluster | Glusterfs | 6.0 | |||
| Application | Gluster | Glusterfs | 5.6 | |||
| Application | Gluster | Glusterfs | 5.5 | |||
| Application | Gluster | Glusterfs | 5.4 | |||
| Application | Gluster | Glusterfs | 5.3 | |||
| Application | Gluster | Glusterfs | 5.2 | |||
| Application | Gluster | Glusterfs | 5.1 | |||
| Application | Gluster | Glusterfs | 5.0.0 | |||
| Application | Gluster | Glusterfs | 5.0.0 | |||
| Application | Gluster | Glusterfs | 5.0.0 | |||
| Application | Gluster | Glusterfs | 5.0.0 | |||
| Application | Gluster | Glusterfs | 4.1.8 | |||
| Application | Gluster | Glusterfs | 4.1.7 | |||
| Application | Gluster | Glusterfs | 4.1.6 | |||
| Application | Gluster | Glusterfs | 4.1.5 | |||
| Application | Gluster | Glusterfs | 4.1.4 |