rbd-mirror vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the rbd-mirror package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free

Vulnerability	Vulnerable Version
M CVE-2025-4673	*
H Cross-site Scripting (XSS)	*
M Improper Output Neutralization for Logs	*
M Improper Input Validation	*
M CVE-2025-68121	*
H Excessive Platform Resource Consumption within a Loop	*
H Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')	*
H Allocation of Resources Without Limits or Throttling	*
H Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')	*
H Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')	*
H Cross-site Scripting (XSS)	*
M Improper Verification of Source of a Communication Channel	*
M Improper Verification of Source of a Communication Channel	*
H Improper Input Validation	*
H Improper Input Validation	*
M Inefficient Regular Expression Complexity	*
M Cross-site Scripting (XSS)	*
M Cross-site Scripting (XSS)	*
M Cross-site Scripting (XSS)	*
M Cross-site Scripting (XSS)	*
M Cross-site Scripting (XSS)	*
M Cross-site Scripting (XSS)	*
L Improper Preservation of Permissions	*
L Improper Preservation of Permissions	*
M Incorrect Authorization	*
M Incorrect Authorization	*
M Incorrect Authorization	*
M Improper Handling of URL Encoding (Hex Encoding)	*
M Improper Handling of URL Encoding (Hex Encoding)	*
M Out-of-bounds Read	*
M Out-of-bounds Read	*
M Out-of-bounds Read	*
M Out-of-bounds Read	*
M Improper Input Validation	*
M Improper Input Validation	*
M Improper Input Validation	*
M Improper Authentication	*
M Improper Input Validation	*
M Improper Input Validation	*
M Cross-site Scripting (XSS)	*
M Cross-site Scripting (XSS)	*
M NULL Pointer Dereference	*
M Cleartext Storage of Sensitive Information	*
M Insufficiently Protected Credentials	*
M Authentication Bypass	*
M Use After Free	*
M Improper Input Validation	*
M Improper Input Validation	*
M Cross-site Scripting (XSS)	*
M Cross-site Scripting (XSS)	*
M Resource Exhaustion	*
M Out-of-Bounds	*
M Out-of-Bounds	*
H Placement of User into Incorrect Group	*
H Placement of User into Incorrect Group	*
M Cross-site Scripting (XSS)	*
M Cross-site Scripting (XSS)	*
M Cross-site Scripting (XSS)	*
M Cross-site Scripting (XSS)	*
H Directory Traversal	*
H Directory Traversal	*
L Cross-site Scripting (XSS)	*
L Cross-site Scripting (XSS)	*
L Improper Authorization	*
M Allocation of Resources Without Limits or Throttling	*
M HTTP Response Splitting	*
M Memory Leak	*
M Allocation of Resources Without Limits or Throttling	*
H Improper Authentication	*
H Insufficiently Protected Credentials	*
M Resource Exhaustion	*
M Resource Exhaustion	*
M Directory Traversal	*
M Resource Exhaustion	*
M Resource Exhaustion	*
H Insufficient Verification of Data Authenticity	*
H Insufficient Verification of Data Authenticity	*
M Least Privilege Violation	*
M Least Privilege Violation	*

Vulnerability

Vulnerable Version

CVE-2025-4673