Known Vulnerabilities for Ceph Storage by Redhat
Listed below are 10 of the newest known vulnerabilities associated with "Ceph Storage" by "Redhat".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2021-20288 | An authentication flaw was found in ceph in versions before 14.2.20. When the monitor handles CEPHX_GET_AUTH_SESSION_KEY requ... | 7.2 - HIGH | 2021-04-15 | 2023-11-07 |
| CVE-2021-20236 | A flaw was found in the ZeroMQ server in versions before 4.3.3. This flaw allows a malicious client to cause a stack buffer o... | 9.8 - CRITICAL | 2021-05-28 | 2023-11-07 |
| CVE-2021-4048 | An out-of-bounds read flaw was found in the CLARRV, DLARRV, SLARRV, and ZLARRV functions in lapack through version 3.10.0, as... | 9.1 - CRITICAL | 2021-12-08 | 2023-11-07 |
| CVE-2021-3979 | A key length flaw was found in Red Hat Ceph Storage. An attacker can exploit the fact that the key length is incorrectly pass... | 6.5 - MEDIUM | 2022-08-25 | 2023-10-23 |
| CVE-2021-3531 | A flaw was found in the Red Hat Ceph Storage RGW in versions before 14.2.21. When processing a GET Request for a swift URL th... | 5.3 - MEDIUM | 2021-05-18 | 2023-11-07 |
| CVE-2021-3524 | A flaw was found in the Red Hat Ceph Storage RadosGW (Ceph Object Gateway) in versions before 14.2.21. The vulnerability is r... | 6.5 - MEDIUM | 2021-05-17 | 2023-11-07 |
| CVE-2021-3509 | A flaw was found in Red Hat Ceph Storage 4, in the Dashboard component. In response to CVE-2020-27839, the JWT token was move... | 6.1 - MEDIUM | 2021-05-27 | 2022-04-25 |
| CVE-2020-1759 | A vulnerability was found in Red Hat Ceph Storage 4 and Red Hat Openshift Container Storage 4.2 where, A nonce reuse vulnerab... | 6.8 - MEDIUM | 2020-04-13 | 2023-11-07 |
| CVE-2020-1712 | A heap use-after-free vulnerability was found in systemd before version v245-rc1, where asynchronous Polkit queries are perfo... | 7.8 - HIGH | 2020-03-31 | 2023-11-07 |
| CVE-2020-1699 | A path traversal flaw was found in the Ceph dashboard implemented in upstream versions v14.2.5, v14.2.6, v15.0.0 of Ceph stor... | 7.5 - HIGH | 2020-04-21 | 2023-11-07 |