Approved changes feed: RSS · Atom
cpe:2.3:a:n/a:ceph:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | N/A (22f567d3-1203-528c-8f0e-3eb9c2f6ca78) |
|---|---|
| Product | Ceph (195a0d1a-28ee-5971-bdc4-96d0db88600b) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2022-3854 |
vulnerable | 2026-06-08 05:48:22.467787 |
Details available
A flaw was found in Ceph, relating to the URL processing on RGW backends. An attacker can exploit the URL processing by providing a null URL to crash the RGW, causing a denial of service.
Published: 2023-03-06T00:00:00.000Z
Updated: 2025-03-06T18:54:06.925Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-3650 |
vulnerable | 2026-06-08 05:48:21.608941 |
Details available
A privilege escalation flaw was found in Ceph. Ceph-crash.service allows a local attacker to escalate privileges to root in the form of a crash dump, and dump privileged information.
Published: 2023-01-17T00:00:00.000Z
Updated: 2025-11-03T18:08:01.727Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-0670 |
vulnerable | 2026-06-08 05:39:10.509748 |
Details available
A flaw was found in Openstack manilla owning a Ceph File system "share", which enables the owner to read/write any manilla share or entire file system. The vulnerability is due to a bug in the "volumes" plugin in Ceph Manager. This allows an attacker to compromise Confidentiality and Integrity of a file system. Fixed in RHCS 5.2 and Ceph 17.2.2.
Published: 2022-07-25T13:58:09.000Z
Updated: 2024-08-02T23:32:46.554Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-3979 |
vulnerable | 2026-06-08 05:33:58.358475 |
Details available
A key length flaw was found in Red Hat Ceph Storage. An attacker can exploit the fact that the key length is incorrectly passed in an encryption algorithm to create a non random key, which is weaker and can be exploited for loss of confidentiality and integrity on encrypted disks.
Published: 2022-08-25T00:00:00.000Z
Updated: 2025-11-03T18:08:00.683Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-3531 |
vulnerable | 2026-06-08 05:33:52.722204 |
Details available
A flaw was found in the Red Hat Ceph Storage RGW in versions before 14.2.21. When processing a GET Request for a swift URL that ends with two slashes it can cause the rgw to crash, resulting in a denial of service. The greatest threat to the system is of availability.
Published: 2021-05-18T00:00:00.000Z
Updated: 2024-08-03T17:01:07.787Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-3524 |
vulnerable | 2026-06-08 05:33:52.712555 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-20288 |
vulnerable | 2026-06-08 05:29:08.896296 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-27781 |
vulnerable | 2026-06-08 05:23:53.172834 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-25678 |
vulnerable | 2026-06-08 05:22:37.187495 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-25660 |
vulnerable | 2026-06-08 05:22:37.115318 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.