Skip to main content

Storage Server

3 CVEs product

Monthly

CVE-2017-14651 MEDIUM POC PATCH This Month

WSO2 Data Analytics Server 3.1.0 has XSS in carbon/resources/add_collection_ajaxprocessor.jsp via the collectionName or parentPath parameter. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

XSS Api Manager App Manager Application Server Business Process Server +13
NVD GitHub
CVSS 3.1
4.8
EPSS
3.7%
CVE-2013-4157 LOW PATCH Monitor

Red Hat Storage 2.0 allows local users to overwrite arbitrary files via a symlink attack on the (1) e, (2) local-bricks.list, (3) bricks.err, or (4) limits.conf files in /tmp. Rated low severity (CVSS 3.6), this vulnerability is low attack complexity.

Red Hat Information Disclosure Storage Server
NVD
CVSS 2.0
3.6
EPSS
0.0%
CVE-2012-5635 LOW Monitor

The GlusterFS functionality in Red Hat Storage Management Console 2.0, Native Client, and Server 2.0 allows local users to overwrite arbitrary files via a symlink attack on multiple temporary files. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. No vendor patch available.

Red Hat Privilege Escalation Glusterfs Storage Management Console Storage Native Client +1
NVD
CVSS 2.0
2.1
EPSS
0.1%
EPSS 4% CVSS 4.8
MEDIUM POC PATCH This Month

WSO2 Data Analytics Server 3.1.0 has XSS in carbon/resources/add_collection_ajaxprocessor.jsp via the collectionName or parentPath parameter. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

XSS Api Manager App Manager +15
NVD GitHub
EPSS 0% CVSS 3.6
LOW PATCH Monitor

Red Hat Storage 2.0 allows local users to overwrite arbitrary files via a symlink attack on the (1) e, (2) local-bricks.list, (3) bricks.err, or (4) limits.conf files in /tmp. Rated low severity (CVSS 3.6), this vulnerability is low attack complexity.

Red Hat Information Disclosure Storage Server
NVD
EPSS 0% CVSS 2.1
LOW Monitor

The GlusterFS functionality in Red Hat Storage Management Console 2.0, Native Client, and Server 2.0 allows local users to overwrite arbitrary files via a symlink attack on multiple temporary files. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. No vendor patch available.

Red Hat Privilege Escalation Glusterfs +3
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy