IDCVSSSummaryLast (major) updatePublished
CVE-2019-10222 5.0
A flaw was found in the Ceph RGW configuration with Beast as the front end handling client requests. An unauthenticated attacker could crash the Ceph RGW server by sending valid HTTP headers and terminating the connection, resulting in a remote denia
04-12-2020 - 18:15 08-11-2019 - 15:15
CVE-2020-1700 6.8
A flaw was found in the way the Ceph RGW Beast front-end handles unexpected disconnects. An authenticated attacker can abuse this flaw by making multiple disconnect attempts resulting in a permanent leak of a socket connection by radosgw. This flaw c
25-03-2020 - 05:15 07-02-2020 - 21:15
CVE-2017-7519 2.1
In Ceph, a format string flaw was found in the way libradosstriper parses input from user. A user could crash an application or service using the libradosstriper library.
09-10-2019 - 23:29 27-07-2018 - 14:29
CVE-2017-12155 3.3
A resource-permission flaw was found in the openstack-tripleo-heat-templates package where ceph.client.openstack.keyring is created as world-readable. A local attacker with access to the key could read or modify data on Ceph cluster pools for OpenSta
03-10-2019 - 00:03 12-12-2017 - 20:29
Back to Top Mark selected
Back to Top