Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Linux Enterprise Micro 5.1 package ceph, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (4)
CVE-2022-0670 — CVSS 9.1 (critical): A flaw was found in Openstack manilla owning a Ceph File system "share", which enables the owner to read/write any manilla share or entire…
CVE-2022-3650 — CVSS 7.8 (high): A privilege escalation flaw was found in Ceph. Ceph-crash.service allows a local attacker to escalate privileges to root in the form of a…
CVE-2021-3979 — CVSS 6.5 (medium): A key length flaw was found in Red Hat Ceph Storage. An attacker can exploit the fact that the key length is incorrectly passed in an…
CVE-2022-3854 — CVSS 6.5 (medium): A flaw was found in Ceph, relating to the URL processing on RGW backends. An attacker can exploit the URL processing by providing a null…