threat
engine
.sh
Back
·
··:··
Home
/
Product
/
redhat ceph
Product
redhat ceph
38 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2024-47866
<= 19.2.3
Ceph is a distributed object, block, and file storage platform. In versions up to and including 19.2.3, using the argument `x-amz-
7.5
HIGH
CVE-2022-3650
all versions
A privilege escalation flaw was found in Ceph. Ceph-crash.service allows a local attacker to escalate privileges to root in the fo
7.8
HIGH
CVE-2022-0670
>= 15.0.0 and < 15.2.17
A flaw was found in Openstack manilla owning a Ceph File system "share", which enables the owner to read/write any manilla share o
9.1
CRITICAL
CVE-2020-1716
<= 5.0.3
A flaw was found in the ceph-ansible playbook where it contained hardcoded passwords that were being used as default passwords whi
8.8
HIGH
CVE-2020-27839
< 14.2.17
A flaw was found in ceph-dashboard. The JSON Web Token (JWT) used for user authentication is stored by the frontend application in
5.4
MEDIUM
CVE-2021-3531
< 14.2.21
A flaw was found in the Red Hat Ceph Storage RGW in versions before 14.2.21. When processing a GET Request for a swift URL that en
5.3
MEDIUM
CVE-2021-3524
< 14.2.21
A flaw was found in the Red Hat Ceph Storage RadosGW (Ceph Object Gateway) in versions before 14.2.21. The vulnerability is relate
6.5
MEDIUM
CVE-2021-20288
< 14.2.21
An authentication flaw was found in ceph in versions before 14.2.20. When the monitor handles CEPHX_GET_AUTH_SESSION_KEY requests,
7.2
HIGH
CVE-2020-25678
< 16.2.0
A flaw was found in ceph in versions prior to 16.y.z where ceph stores mgr module passwords in clear text. This can be found by se
4.4
MEDIUM
CVE-2020-27781
< 14.2.16
User credentials can be manipulated and stolen by Native CephFS consumers of OpenStack Manila, resulting in potential privilege es
7.1
HIGH
CVE-2020-25677
all versions
A flaw was found in Ceph-ansible v4.0.41 where it creates an /etc/ceph/iscsi-gateway.conf with insecure default permissions. This
5.5
MEDIUM
CVE-2020-25660
< 14.2.14
A flaw was found in the Cephx authentication protocol in versions before 15.2.6 and before 14.2.14, where it does not verify Ceph
8.8
HIGH
CVE-2020-10753
< 14.2.21
A flaw was found in the Red Hat Ceph Storage RadosGW (Ceph Object Gateway). The vulnerability is related to the injection of HTTP
5.4
MEDIUM
CVE-2020-10736
>= 15.2.0 and < 15.2.2
An authorization bypass vulnerability was found in Ceph versions 15.2.0 before 15.2.2, where the ceph-mon and ceph-mgr daemons do
8.0
HIGH
CVE-2020-1760
< 14.2.21
A flaw was found in the Ceph Object Gateway, where it supports request sent by an anonymous user in Amazon S3. This flaw could lea
5.8
MEDIUM
CVE-2020-12059
<= 13.2.9
An issue was discovered in Ceph through 13.2.9. A POST request with an invalid tagging XML can crash the RGW process by triggering
7.5
HIGH
CVE-2020-1699
all versions
A path traversal flaw was found in the Ceph dashboard implemented in upstream versions v14.2.5, v14.2.6, v15.0.0 of Ceph storage a
7.5
HIGH
CVE-2020-1759
< 14.2.21
A vulnerability was found in Red Hat Ceph Storage 4 and Red Hat Openshift Container Storage 4.2 where, A nonce reuse vulnerability
6.4
MEDIUM
CVE-2020-1700
all versions
A flaw was found in the way the Ceph RGW Beast front-end handles unexpected disconnects. An authenticated attacker can abuse this
6.5
MEDIUM
CVE-2019-10222
all versions
A flaw was found in the Ceph RGW configuration with Beast as the front end handling client requests. An unauthenticated attacker c
7.5
HIGH
CVE-2019-3821
< 1.11
A flaw was found in the way civetweb frontend was handling requests for ceph RGW server with SSL enabled. An unauthenticated attac
7.5
HIGH
CVE-2018-16889
<= 13.2.4
Ceph does not properly sanitize encryption keys in debug logging for v4 auth. This results in the leaking of encryption key inform
5.5
MEDIUM
CVE-2018-14662
< 13.2.4
It was found Ceph versions before 13.2.4 that authenticated ceph users with read only permissions could steal dm-crypt encryption
5.7
MEDIUM
CVE-2018-16846
< 13.2.4
It was found in Ceph versions before 13.2.4 that authenticated ceph RGW users can cause a denial of service against OMAPs holding
6.5
MEDIUM
CVE-2018-14649
all versions
It was found that ceph-isci-cli package as shipped by Red Hat Ceph Storage 2 and 3 is using python-werkzeug in debug shell mode. T
9.8
CRITICAL
CVE-2016-8626
< 0.94.3.9-8
A flaw was found in Red Hat Ceph before 0.94.9-8. The way Ceph Object Gateway handles POST object requests permits an authenticate
6.5
MEDIUM
CVE-2017-7519
all versions
In Ceph, a format string flaw was found in the way libradosstriper parses input from user. A user could crash an application or se
2.3
LOW
CVE-2018-1129
all versions
A flaw was found in the way signature calculation was handled by cephx authentication protocol. An attacker having access to ceph
6.5
MEDIUM
CVE-2018-1128
>= 10.2.0 and <= 13.2.1
It was found that cephx authentication protocol did not verify ceph clients correctly and was vulnerable to replay attack. Any att
7.5
HIGH
CVE-2018-10861
all versions
A flaw was found in the way ceph mon handles user requests. Any authenticated ceph user having read access to ceph can delete, cre
8.1
HIGH
CVE-2018-7262
< 12.2.3
In Ceph before 12.2.3 and 13.x through 13.0.1, the rgw_civetweb.cc RGWCivetWeb::init_env function in radosgw doesn't handle malfor
7.5
HIGH
CVE-2017-16818
>= 12.1.0 and <= 12.2.1
RADOS Gateway in Ceph 12.1.0 through 12.2.1 allows remote authenticated users to cause a denial of service (assertion failure and
6.5
MEDIUM
CVE-2017-12155
all versions
A resource-permission flaw was found in the openstack-tripleo-heat-templates package where ceph.client.openstack.keyring is create
6.3
MEDIUM
CVE-2016-7031
<= 10.0.0
The RGW code in Ceph before 10.0.1, when authenticated-read ACL is applied to a bucket, allows remote attackers to list the bucket
7.5
HIGH
CVE-2016-5009
<= 0.94.6
The handle_command function in mon/Monitor.cc in Ceph allows remote authenticated users to cause a denial of service (segmentation
6.5
MEDIUM
CVE-2015-5245
<= 0.94.3
CRLF injection vulnerability in the Ceph Object Gateway (aka radosgw or RGW) in Ceph before 0.94.4 allows remote attackers to inje
CVE-2015-3010
all versions
ceph-deploy before 1.5.23 uses weak permissions (644) for ceph/ceph.client.admin.keyring, which allows local users to obtain sensi
CVE-2015-4053
<= 1.5.22
The admin command in ceph-deploy before 1.5.25 uses world-readable permissions for /etc/ceph/ceph.client.admin.keyring, which allo
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin