Published: 27/03/2019 Updated: 13/11/2020
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9
VMScore: 445
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

Vulnerability Summary

It exists that Ceph incorrectly handled read only permissions. An authenticated attacker could use this issue to obtain dm-crypt encryption keys. This issue only affected Ubuntu 16.04 LTS. (CVE-2018-14662)

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

ceph civetweb -

canonical ubuntu linux 16.04

canonical ubuntu linux 18.10

canonical ubuntu linux 19.04

Vendor Advisories

Several security issues were fixed in Ceph ...
Impact: Important Public Date: 2019-02-11 CWE: CWE-400 Bugzilla: 1656852: CVE-2019-3821 ceph: radosgw: ...