Redhat Ceph Storage Mon — known CVE vulnerabilities
Every CVE whose affected-product data names Redhat Ceph Storage Mon, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2018-10861 — CVSS 8.1 (high): A flaw was found in the way ceph mon handles user requests. Any authenticated ceph user having read access to ceph can delete, create ceph…
CVE-2018-1128 — CVSS 7.5 (high): It was found that cephx authentication protocol did not verify ceph clients correctly and was vulnerable to replay attack. Any attacker…
CVE-2016-5009 — CVSS 6.5 (medium): The handle_command function in mon/Monitor.cc in Ceph allows remote authenticated users to cause a denial of service (segmentation fault…
CVE-2016-9579 — CVSS 6.5 (medium): A flaw was found in the way Ceph Object Gateway would process cross-origin HTTP requests if the CORS policy was set to allow origin on a…
CVE-2018-1129 — CVSS 6.5 (medium): A flaw was found in the way signature calculation was handled by cephx authentication protocol. An attacker having access to ceph cluster…