Skip to main content

Pcs

5 CVEs product

Monthly

CVE-2023-2319 CRITICAL Act Now

It was discovered that an update for PCS package in RHBA-2023:2151 erratum released as part of Red Hat Enterprise Linux 9.2 failed to include the fix for the Webpack issue CVE-2023-28154 (for PCS. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Red Hat Information Disclosure Pcs Enterprise Linux High Availability Enterprise Linux High Availability Eus
NVD
CVSS 3.1
9.8
EPSS
1.0%
CVE-2022-2735 HIGH PATCH This Week

A vulnerability was found in the PCS project. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. This Incorrect Default Permissions vulnerability could allow attackers to access resources due to overly permissive default settings.

Privilege Escalation Pcs Debian Linux
NVD
CVSS 3.1
7.8
EPSS
0.3%
CVE-2022-1049 HIGH POC This Week

A flaw was found in the Pacemaker configuration tool (pcs). Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Pcs Debian Linux
NVD
CVSS 3.1
8.8
EPSS
1.8%
CVE-2016-0721 HIGH PATCH This Week

Session fixation vulnerability in pcsd in pcs before 0.9.157. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Session Fixation Information Disclosure Pcs Fedora Enterprise Linux
NVD GitHub
CVSS 3.0
8.1
EPSS
0.4%
CVE-2016-0720 HIGH PATCH This Week

Cross-site request forgery (CSRF) vulnerability in pcsd web UI in pcs before 0.9.149. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

CSRF Pcs Fedora Enterprise Linux
NVD GitHub
CVSS 3.0
8.8
EPSS
0.3%
EPSS 1% CVSS 9.8
CRITICAL Act Now

It was discovered that an update for PCS package in RHBA-2023:2151 erratum released as part of Red Hat Enterprise Linux 9.2 failed to include the fix for the Webpack issue CVE-2023-28154 (for PCS. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Red Hat Information Disclosure Pcs +2
NVD
EPSS 0% CVSS 7.8
HIGH PATCH This Week

A vulnerability was found in the PCS project. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. This Incorrect Default Permissions vulnerability could allow attackers to access resources due to overly permissive default settings.

Privilege Escalation Pcs Debian Linux
NVD
EPSS 2% CVSS 8.8
HIGH POC This Week

A flaw was found in the Pacemaker configuration tool (pcs). Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Pcs Debian Linux
NVD
EPSS 0% CVSS 8.1
HIGH PATCH This Week

Session fixation vulnerability in pcsd in pcs before 0.9.157. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Session Fixation Information Disclosure Pcs +2
NVD GitHub
EPSS 0% CVSS 8.8
HIGH PATCH This Week

Cross-site request forgery (CSRF) vulnerability in pcsd web UI in pcs before 0.9.149. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

CSRF Pcs Fedora +1
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy