Red hat ceph storage

This hub aggregates every CVE we track for Red hat ceph storage, a product in the databases space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 15 most recently published vulnerabilities affecting Red hat ceph storage.

• CVE-2024-31884Уязвимость системы хранения данных Ceph, позволяющая нарушителю получить доступ к конфиденциальным данным или вызвать отказ в обслуживании6.5May 13, 2026
• CVE-2025-12141Grafana Alerting Editors can edit destination of webhooks they did not create6.5Apr 15, 2026
• CVE-2026-32288Unbounded allocation for old GNU sparse in archive/tar5.5Apr 8, 2026
• CVE-2026-32289JsBraceDepth Context Tracking Bugs (XSS) in html/template6.1Apr 8, 2026
• CVE-2025-14831Gnutls: gnutls: denial of service via excessive resource consumption during certificate verification5.3Feb 9, 2026
• CVE-2026-1761Libsoup: stack-based buffer overflow in libsoup multipart response parsingmultipart http response8.6Feb 2, 2026
• CVE-2026-1299email BytesGenerator header injection due to unquoted newlines7.1Jan 23, 2026
• CVE-2025-15367POP3 command injection in user-controlled commands5.5Jan 20, 2026
• CVE-2025-15366IMAP command injection in user-controlled commands5.5Jan 20, 2026
• CVE-2025-15281wordexp with WRDE_REUSE and WRDE_APPEND may return uninitialized memory7.5Jan 20, 2026
• CVE-2026-23490pyasn1 has a DoS vulnerability in decoder7.5Jan 16, 2026
• CVE-2026-0861Integer overflow in memalign leads to heap corruption8.4Jan 14, 2026
• CVE-2026-22801LIBPNG has an integer truncation causing heap buffer over-read in png_image_write_*6.8Jan 12, 2026
• CVE-2025-66471urllib3 Streaming API improperly handles highly compressed data7.5Dec 5, 2025
• CVE-2025-66418urllib3 allows an unbounded number of links in the decompression chain7.5Dec 5, 2025