ceph-mgr-cephadm vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the ceph-mgr-cephadm package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Vulnerability	Vulnerable Version
H Insufficient Verification of Data Authenticity	*
M Cross-site Scripting (XSS)	*
M Directory Traversal	<2:16.2.10-266.el8cp
M Allocation of Resources Without Limits or Throttling	<2:16.2.10-266.el8cp
M NULL Pointer Dereference	*
M Improper Input Validation	<2:16.2.10-248.el8cp
M Insufficient Granularity of Access Control	<2:16.2.10-248.el8cp
M Resource Exhaustion	<2:16.2.10-266.el8cp
M Inefficient Regular Expression Complexity	*
M Improper Handling of URL Encoding (Hex Encoding)	*
H Placement of User into Incorrect Group	<2:16.2.10-138.el8cp
M Incorrect Authorization	<2:16.2.8-84.el8cp
M Resource Exhaustion	*
L Cross-site Scripting (XSS)	*
M Overly Restrictive Regular Expression	*
M Overly Restrictive Regular Expression	*
M Directory Traversal	<2:16.2.10-94.el8cp
M Improper Authentication	<2:16.2.7-98.el8cp
M Out-of-bounds Read	*
M Improper Input Validation	<2:16.2.7-98.el8cp
M Cross-site Scripting (XSS)	*
M Resource Exhaustion	*
M Cross-site Scripting (XSS)	*
M Cross-site Scripting (XSS)	*
M Improper Input Validation	<2:16.2.7-98.el8cp