Every CVE whose affected-product data names Ceph Ceph-ansible, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2020-1716 — CVSS 8.8 (high): A flaw was found in the ceph-ansible playbook where it contained hardcoded passwords that were being used as default passwords while…
CVE-2020-25677 — CVSS 5.5 (medium): A flaw was found in Ceph-ansible v4.0.41 where it creates an /etc/ceph/iscsi-gateway.conf with insecure default permissions. This flaw…