Search CVE reports

Toggle filters

41 – 43 of 43 results

CVE-2015-5245

Low priority
Ignored

CRLF injection vulnerability in the Ceph Object Gateway (aka radosgw or RGW) in Ceph before 0.94.4 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a crafted bucket name.

1 affected package

ceph

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
ceph Not affected Not affected
Show less packages

CVE-2015-4053

Medium priority
Ignored

The admin command in ceph-deploy before 1.5.25 uses world-readable permissions for /etc/ceph/ceph.client.admin.keyring, which allows local users to obtain sensitive information by reading the file.

1 affected package

ceph-deploy

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
ceph-deploy Not affected
Show less packages

CVE-2015-3010

Medium priority
Ignored

ceph-deploy before 1.5.23 uses weak permissions (644) for ceph/ceph.client.admin.keyring, which allows local users to obtain sensitive information by reading the file.

1 affected package

ceph-deploy

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
ceph-deploy Not affected
Show less packages
  1. Previous page
  2. 1
  3. 2
  4. 3
  5. 4
  6. 5
  7. Next page
Export to JSON