CVE-2016-5009

MEDIUM

Ceph < 0.94.6 - Authenticated Denial of Service via Crafted Prefix in Monitor Command Handler

Title source: llm
STIX 2.1

Description

The handle_command function in mon/Monitor.cc in Ceph allows remote authenticated users to cause a denial of service (segmentation fault and ceph monitor crash) via an (1) empty or (2) crafted prefix.

References (6)

Core 6
Core References
Vendor Advisory x_refsource_confirm
http://tracker.ceph.com/issues/16297
Vendor Advisory vendor-advisory x_refsource_redhat
https://access.redhat.com/errata/RHSA-2016:1384
Vendor Advisory vendor-advisory x_refsource_redhat
https://access.redhat.com/errata/RHSA-2016:1385
Mailing List vendor-advisory x_refsource_suse
http://lists.opensuse.org/opensuse-updates/2016-12/msg00126.html
Issue Tracking x_refsource_confirm
https://github.com/ceph/ceph/pull/9700

Scores

CVSS v3 6.5
EPSS 0.0248
EPSS Percentile 82.6%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

CWE
CWE-20
Status published
Products (7)
redhat/ceph < 0.94.6
redhat/ceph_storage_mon 1.3
redhat/ceph_storage_osd 1.3
redhat/enterprise_linux_desktop 7.0
redhat/enterprise_linux_for_scientific_computing 7.0
redhat/enterprise_linux_server 7.0
redhat/enterprise_linux_workstation 7.0
Published Jul 12, 2016
Tracked Since Feb 18, 2026