Vulnerabilities (CVE)

Filtered by vendor Gluster Subscribe
Total 23 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2014-3619 2 Gluster, Opensuse 2 Glusterfs, Opensuse 2024-11-21 5.0 MEDIUM N/A
The __socket_proto_state_machine function in GlusterFS 3.5 allows remote attackers to cause a denial of service (infinite loop) via a "00000000" fragment header.
CVE-2012-5635 2 Gluster, Redhat 4 Glusterfs, Storage Management Console, Storage Native Client and 1 more 2024-11-21 2.1 LOW N/A
The GlusterFS functionality in Red Hat Storage Management Console 2.0, Native Client, and Server 2.0 allows local users to overwrite arbitrary files via a symlink attack on multiple temporary files created by (1) tests/volume.rc, (2) extras/hook-scripts/S30samba-stop.sh, and possibly other vectors, different vulnerabilities than CVE-2012-4417.
CVE-2012-4417 1 Gluster 1 Glusterfs 2024-11-21 3.6 LOW N/A
GlusterFS 3.3.0, as used in Red Hat Storage server 2.0, allows local users to overwrite arbitrary files via a symlink attack on temporary files with predictable names.