Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-r1ah-c6z7-vyen
Summaryceph: privilege escalation by unprivileged users in a ceph-fuse mounted CephFS
Aliases
0
alias CVE-2025-52555
Fixed_packages
0
url pkg:deb/debian/ceph@14.2.21-1?distro=trixie
purl pkg:deb/debian/ceph@14.2.21-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ceph@14.2.21-1%3Fdistro=trixie
1
url pkg:deb/debian/ceph@14.2.21-1%2Bdeb11u1?distro=trixie
purl pkg:deb/debian/ceph@14.2.21-1%2Bdeb11u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ceph@14.2.21-1%252Bdeb11u1%3Fdistro=trixie
2
url pkg:deb/debian/ceph@16.2.15%2Bds-0%2Bdeb12u1
purl pkg:deb/debian/ceph@16.2.15%2Bds-0%2Bdeb12u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-18bk-met9-qfc9
1
vulnerability VCID-1yz5-m9s7-nqdm
2
vulnerability VCID-r1ah-c6z7-vyen
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ceph@16.2.15%252Bds-0%252Bdeb12u1
3
url pkg:deb/debian/ceph@18.2.6-1?distro=trixie
purl pkg:deb/debian/ceph@18.2.6-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ceph@18.2.6-1%3Fdistro=trixie
4
url pkg:deb/debian/ceph@18.2.7%2Bds-1?distro=trixie
purl pkg:deb/debian/ceph@18.2.7%2Bds-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-18bk-met9-qfc9
1
vulnerability VCID-1yz5-m9s7-nqdm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ceph@18.2.7%252Bds-1%3Fdistro=trixie
5
url pkg:deb/debian/ceph@18.2.7%2Bds-1
purl pkg:deb/debian/ceph@18.2.7%2Bds-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-18bk-met9-qfc9
1
vulnerability VCID-1yz5-m9s7-nqdm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ceph@18.2.7%252Bds-1
6
url pkg:deb/debian/ceph@18.2.8%2Bds-1?distro=trixie
purl pkg:deb/debian/ceph@18.2.8%2Bds-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ceph@18.2.8%252Bds-1%3Fdistro=trixie
Affected_packages
0
url pkg:deb/debian/ceph@0.80.7-1~bpo70%2B1
purl pkg:deb/debian/ceph@0.80.7-1~bpo70%2B1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-18bk-met9-qfc9
1
vulnerability VCID-1fhp-86sm-bqe5
2
vulnerability VCID-1yz5-m9s7-nqdm
3
vulnerability VCID-36gd-352p-n7b7
4
vulnerability VCID-3pwt-4j1y-dbg6
5
vulnerability VCID-47cr-h639-tqd4
6
vulnerability VCID-4mk7-e67u-zkgy
7
vulnerability VCID-54nw-yq6d-2ueu
8
vulnerability VCID-5bgn-2pbq-6yd1
9
vulnerability VCID-6kbn-psnc-q3cy
10
vulnerability VCID-7k2s-fmzx-a3d8
11
vulnerability VCID-9e77-3unf-r3hu
12
vulnerability VCID-a4u3-63ez-gfbc
13
vulnerability VCID-axaa-8h31-j3gd
14
vulnerability VCID-bdcb-c7nj-j7gw
15
vulnerability VCID-bysx-t7fz-5kdk
16
vulnerability VCID-cm58-jgsb-7yaf
17
vulnerability VCID-d8ft-cst1-5yh5
18
vulnerability VCID-fy1p-qh8k-m7b8
19
vulnerability VCID-gj55-s7r1-f3b4
20
vulnerability VCID-gjne-rqt9-jqc5
21
vulnerability VCID-hqp5-p9fs-t3dk
22
vulnerability VCID-kxvn-yjm8-3ygt
23
vulnerability VCID-m5wq-1w2k-9khk
24
vulnerability VCID-nczx-qfyh-xubz
25
vulnerability VCID-pp2v-1dp5-4bbd
26
vulnerability VCID-qkp7-s947-ufcu
27
vulnerability VCID-qr8p-ec3h-37at
28
vulnerability VCID-r1ah-c6z7-vyen
29
vulnerability VCID-rukb-cwpx-q3hy
30
vulnerability VCID-ss2f-8hxs-myb1
31
vulnerability VCID-ssk3-kfn8-vuhy
32
vulnerability VCID-xsvh-emr7-r7as
33
vulnerability VCID-yr1z-udw9-mfha
34
vulnerability VCID-zbwp-sfx4-xke7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ceph@0.80.7-1~bpo70%252B1
1
url pkg:deb/debian/ceph@0.80.7-2
purl pkg:deb/debian/ceph@0.80.7-2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-18bk-met9-qfc9
1
vulnerability VCID-1fhp-86sm-bqe5
2
vulnerability VCID-1yz5-m9s7-nqdm
3
vulnerability VCID-36gd-352p-n7b7
4
vulnerability VCID-3pwt-4j1y-dbg6
5
vulnerability VCID-47cr-h639-tqd4
6
vulnerability VCID-4mk7-e67u-zkgy
7
vulnerability VCID-54nw-yq6d-2ueu
8
vulnerability VCID-5bgn-2pbq-6yd1
9
vulnerability VCID-6kbn-psnc-q3cy
10
vulnerability VCID-7k2s-fmzx-a3d8
11
vulnerability VCID-9e77-3unf-r3hu
12
vulnerability VCID-a4u3-63ez-gfbc
13
vulnerability VCID-axaa-8h31-j3gd
14
vulnerability VCID-bdcb-c7nj-j7gw
15
vulnerability VCID-bysx-t7fz-5kdk
16
vulnerability VCID-cm58-jgsb-7yaf
17
vulnerability VCID-d8ft-cst1-5yh5
18
vulnerability VCID-fy1p-qh8k-m7b8
19
vulnerability VCID-gj55-s7r1-f3b4
20
vulnerability VCID-gjne-rqt9-jqc5
21
vulnerability VCID-hqp5-p9fs-t3dk
22
vulnerability VCID-kxvn-yjm8-3ygt
23
vulnerability VCID-m5wq-1w2k-9khk
24
vulnerability VCID-nczx-qfyh-xubz
25
vulnerability VCID-pp2v-1dp5-4bbd
26
vulnerability VCID-qkp7-s947-ufcu
27
vulnerability VCID-qr8p-ec3h-37at
28
vulnerability VCID-r1ah-c6z7-vyen
29
vulnerability VCID-rukb-cwpx-q3hy
30
vulnerability VCID-ss2f-8hxs-myb1
31
vulnerability VCID-ssk3-kfn8-vuhy
32
vulnerability VCID-xsvh-emr7-r7as
33
vulnerability VCID-yr1z-udw9-mfha
34
vulnerability VCID-zbwp-sfx4-xke7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ceph@0.80.7-2
2
url pkg:deb/debian/ceph@0.80.7-2%2Bdeb8u2
purl pkg:deb/debian/ceph@0.80.7-2%2Bdeb8u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-18bk-met9-qfc9
1
vulnerability VCID-1fhp-86sm-bqe5
2
vulnerability VCID-1yz5-m9s7-nqdm
3
vulnerability VCID-36gd-352p-n7b7
4
vulnerability VCID-3pwt-4j1y-dbg6
5
vulnerability VCID-47cr-h639-tqd4
6
vulnerability VCID-4mk7-e67u-zkgy
7
vulnerability VCID-54nw-yq6d-2ueu
8
vulnerability VCID-5bgn-2pbq-6yd1
9
vulnerability VCID-6kbn-psnc-q3cy
10
vulnerability VCID-7k2s-fmzx-a3d8
11
vulnerability VCID-9e77-3unf-r3hu
12
vulnerability VCID-a4u3-63ez-gfbc
13
vulnerability VCID-axaa-8h31-j3gd
14
vulnerability VCID-bdcb-c7nj-j7gw
15
vulnerability VCID-bysx-t7fz-5kdk
16
vulnerability VCID-cm58-jgsb-7yaf
17
vulnerability VCID-d8ft-cst1-5yh5
18
vulnerability VCID-fy1p-qh8k-m7b8
19
vulnerability VCID-gj55-s7r1-f3b4
20
vulnerability VCID-gjne-rqt9-jqc5
21
vulnerability VCID-hqp5-p9fs-t3dk
22
vulnerability VCID-kxvn-yjm8-3ygt
23
vulnerability VCID-m5wq-1w2k-9khk
24
vulnerability VCID-nczx-qfyh-xubz
25
vulnerability VCID-pp2v-1dp5-4bbd
26
vulnerability VCID-qkp7-s947-ufcu
27
vulnerability VCID-qr8p-ec3h-37at
28
vulnerability VCID-r1ah-c6z7-vyen
29
vulnerability VCID-rukb-cwpx-q3hy
30
vulnerability VCID-ss2f-8hxs-myb1
31
vulnerability VCID-ssk3-kfn8-vuhy
32
vulnerability VCID-xsvh-emr7-r7as
33
vulnerability VCID-yr1z-udw9-mfha
34
vulnerability VCID-zbwp-sfx4-xke7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ceph@0.80.7-2%252Bdeb8u2
3
url pkg:deb/debian/ceph@0.80.10-2~bpo8%2B1
purl pkg:deb/debian/ceph@0.80.10-2~bpo8%2B1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-18bk-met9-qfc9
1
vulnerability VCID-1fhp-86sm-bqe5
2
vulnerability VCID-1yz5-m9s7-nqdm
3
vulnerability VCID-36gd-352p-n7b7
4
vulnerability VCID-3pwt-4j1y-dbg6
5
vulnerability VCID-47cr-h639-tqd4
6
vulnerability VCID-4mk7-e67u-zkgy
7
vulnerability VCID-54nw-yq6d-2ueu
8
vulnerability VCID-5bgn-2pbq-6yd1
9
vulnerability VCID-6kbn-psnc-q3cy
10
vulnerability VCID-7k2s-fmzx-a3d8
11
vulnerability VCID-9e77-3unf-r3hu
12
vulnerability VCID-a4u3-63ez-gfbc
13
vulnerability VCID-axaa-8h31-j3gd
14
vulnerability VCID-bdcb-c7nj-j7gw
15
vulnerability VCID-cm58-jgsb-7yaf
16
vulnerability VCID-d8ft-cst1-5yh5
17
vulnerability VCID-fy1p-qh8k-m7b8
18
vulnerability VCID-gj55-s7r1-f3b4
19
vulnerability VCID-gjne-rqt9-jqc5
20
vulnerability VCID-hqp5-p9fs-t3dk
21
vulnerability VCID-kxvn-yjm8-3ygt
22
vulnerability VCID-m5wq-1w2k-9khk
23
vulnerability VCID-nczx-qfyh-xubz
24
vulnerability VCID-pp2v-1dp5-4bbd
25
vulnerability VCID-qkp7-s947-ufcu
26
vulnerability VCID-qr8p-ec3h-37at
27
vulnerability VCID-r1ah-c6z7-vyen
28
vulnerability VCID-rukb-cwpx-q3hy
29
vulnerability VCID-ss2f-8hxs-myb1
30
vulnerability VCID-ssk3-kfn8-vuhy
31
vulnerability VCID-xsvh-emr7-r7as
32
vulnerability VCID-yr1z-udw9-mfha
33
vulnerability VCID-zbwp-sfx4-xke7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ceph@0.80.10-2~bpo8%252B1
4
url pkg:deb/debian/ceph@10.2.5-6~bpo8%2B1
purl pkg:deb/debian/ceph@10.2.5-6~bpo8%2B1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-18bk-met9-qfc9
1
vulnerability VCID-1fhp-86sm-bqe5
2
vulnerability VCID-1yz5-m9s7-nqdm
3
vulnerability VCID-36gd-352p-n7b7
4
vulnerability VCID-3pwt-4j1y-dbg6
5
vulnerability VCID-47cr-h639-tqd4
6
vulnerability VCID-4mk7-e67u-zkgy
7
vulnerability VCID-54nw-yq6d-2ueu
8
vulnerability VCID-5bgn-2pbq-6yd1
9
vulnerability VCID-6kbn-psnc-q3cy
10
vulnerability VCID-7k2s-fmzx-a3d8
11
vulnerability VCID-9e77-3unf-r3hu
12
vulnerability VCID-a4u3-63ez-gfbc
13
vulnerability VCID-axaa-8h31-j3gd
14
vulnerability VCID-bdcb-c7nj-j7gw
15
vulnerability VCID-d8ft-cst1-5yh5
16
vulnerability VCID-fy1p-qh8k-m7b8
17
vulnerability VCID-gjne-rqt9-jqc5
18
vulnerability VCID-hqp5-p9fs-t3dk
19
vulnerability VCID-kxvn-yjm8-3ygt
20
vulnerability VCID-m5wq-1w2k-9khk
21
vulnerability VCID-nczx-qfyh-xubz
22
vulnerability VCID-pp2v-1dp5-4bbd
23
vulnerability VCID-qkp7-s947-ufcu
24
vulnerability VCID-r1ah-c6z7-vyen
25
vulnerability VCID-rukb-cwpx-q3hy
26
vulnerability VCID-ssk3-kfn8-vuhy
27
vulnerability VCID-xsvh-emr7-r7as
28
vulnerability VCID-yr1z-udw9-mfha
29
vulnerability VCID-zbwp-sfx4-xke7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ceph@10.2.5-6~bpo8%252B1
5
url pkg:deb/debian/ceph@10.2.11-2
purl pkg:deb/debian/ceph@10.2.11-2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-18bk-met9-qfc9
1
vulnerability VCID-1fhp-86sm-bqe5
2
vulnerability VCID-1yz5-m9s7-nqdm
3
vulnerability VCID-36gd-352p-n7b7
4
vulnerability VCID-3pwt-4j1y-dbg6
5
vulnerability VCID-47cr-h639-tqd4
6
vulnerability VCID-4mk7-e67u-zkgy
7
vulnerability VCID-54nw-yq6d-2ueu
8
vulnerability VCID-5bgn-2pbq-6yd1
9
vulnerability VCID-6kbn-psnc-q3cy
10
vulnerability VCID-7k2s-fmzx-a3d8
11
vulnerability VCID-9e77-3unf-r3hu
12
vulnerability VCID-a4u3-63ez-gfbc
13
vulnerability VCID-axaa-8h31-j3gd
14
vulnerability VCID-bdcb-c7nj-j7gw
15
vulnerability VCID-d8ft-cst1-5yh5
16
vulnerability VCID-fy1p-qh8k-m7b8
17
vulnerability VCID-gjne-rqt9-jqc5
18
vulnerability VCID-kxvn-yjm8-3ygt
19
vulnerability VCID-m5wq-1w2k-9khk
20
vulnerability VCID-nczx-qfyh-xubz
21
vulnerability VCID-pp2v-1dp5-4bbd
22
vulnerability VCID-qkp7-s947-ufcu
23
vulnerability VCID-r1ah-c6z7-vyen
24
vulnerability VCID-rukb-cwpx-q3hy
25
vulnerability VCID-ssk3-kfn8-vuhy
26
vulnerability VCID-xsvh-emr7-r7as
27
vulnerability VCID-yr1z-udw9-mfha
28
vulnerability VCID-zbwp-sfx4-xke7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ceph@10.2.11-2
6
url pkg:deb/debian/ceph@12.2.11%2Bdfsg1-2.1
purl pkg:deb/debian/ceph@12.2.11%2Bdfsg1-2.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-18bk-met9-qfc9
1
vulnerability VCID-1fhp-86sm-bqe5
2
vulnerability VCID-1yz5-m9s7-nqdm
3
vulnerability VCID-36gd-352p-n7b7
4
vulnerability VCID-3pwt-4j1y-dbg6
5
vulnerability VCID-47cr-h639-tqd4
6
vulnerability VCID-4mk7-e67u-zkgy
7
vulnerability VCID-54nw-yq6d-2ueu
8
vulnerability VCID-5bgn-2pbq-6yd1
9
vulnerability VCID-6kbn-psnc-q3cy
10
vulnerability VCID-7k2s-fmzx-a3d8
11
vulnerability VCID-9e77-3unf-r3hu
12
vulnerability VCID-a4u3-63ez-gfbc
13
vulnerability VCID-gjne-rqt9-jqc5
14
vulnerability VCID-kxvn-yjm8-3ygt
15
vulnerability VCID-m5wq-1w2k-9khk
16
vulnerability VCID-nczx-qfyh-xubz
17
vulnerability VCID-pp2v-1dp5-4bbd
18
vulnerability VCID-qkp7-s947-ufcu
19
vulnerability VCID-r1ah-c6z7-vyen
20
vulnerability VCID-rukb-cwpx-q3hy
21
vulnerability VCID-zbwp-sfx4-xke7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ceph@12.2.11%252Bdfsg1-2.1
7
url pkg:deb/debian/ceph@14.2.21-1
purl pkg:deb/debian/ceph@14.2.21-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-18bk-met9-qfc9
1
vulnerability VCID-1yz5-m9s7-nqdm
2
vulnerability VCID-47cr-h639-tqd4
3
vulnerability VCID-54nw-yq6d-2ueu
4
vulnerability VCID-5bgn-2pbq-6yd1
5
vulnerability VCID-nczx-qfyh-xubz
6
vulnerability VCID-r1ah-c6z7-vyen
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ceph@14.2.21-1
8
url pkg:deb/debian/ceph@16.2.15%2Bds-0%2Bdeb12u1?distro=trixie
purl pkg:deb/debian/ceph@16.2.15%2Bds-0%2Bdeb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-18bk-met9-qfc9
1
vulnerability VCID-1yz5-m9s7-nqdm
2
vulnerability VCID-r1ah-c6z7-vyen
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ceph@16.2.15%252Bds-0%252Bdeb12u1%3Fdistro=trixie
9
url pkg:deb/debian/ceph@16.2.15%2Bds-0%2Bdeb12u1
purl pkg:deb/debian/ceph@16.2.15%2Bds-0%2Bdeb12u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-18bk-met9-qfc9
1
vulnerability VCID-1yz5-m9s7-nqdm
2
vulnerability VCID-r1ah-c6z7-vyen
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ceph@16.2.15%252Bds-0%252Bdeb12u1
10
url pkg:rpm/redhat/ceph@2:18.2.1-381?arch=el8cp
purl pkg:rpm/redhat/ceph@2:18.2.1-381?arch=el8cp
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-18bk-met9-qfc9
1
vulnerability VCID-1yz5-m9s7-nqdm
2
vulnerability VCID-864e-hkby-qfh6
3
vulnerability VCID-h8nr-tcb7-93em
4
vulnerability VCID-hay4-q9m3-ekdj
5
vulnerability VCID-qb4z-jzem-myee
6
vulnerability VCID-qp47-aewx-wufh
7
vulnerability VCID-r1ah-c6z7-vyen
8
vulnerability VCID-s6f3-3mxh-ekfr
9
vulnerability VCID-sty6-gwh1-hbcy
10
vulnerability VCID-vzq7-t235-ukd5
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/ceph@2:18.2.1-381%3Farch=el8cp
11
url pkg:rpm/redhat/ceph@2:20.1.0-144?arch=el10cp
purl pkg:rpm/redhat/ceph@2:20.1.0-144?arch=el10cp
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-18bk-met9-qfc9
1
vulnerability VCID-h8nr-tcb7-93em
2
vulnerability VCID-r1ah-c6z7-vyen
3
vulnerability VCID-s5gr-zsbz-xkbe
4
vulnerability VCID-yyye-gaug-8uh2
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/ceph@2:20.1.0-144%3Farch=el10cp
References
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-52555.json
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:C/C:H/I:L/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-52555.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-52555
reference_id
reference_type
scores
0
value 0.00021
scoring_system epss
scoring_elements 0.05524
published_at 2026-04-02T12:55:00Z
1
value 0.00021
scoring_system epss
scoring_elements 0.05542
published_at 2026-04-18T12:55:00Z
2
value 0.00021
scoring_system epss
scoring_elements 0.05595
published_at 2026-04-08T12:55:00Z
3
value 0.00021
scoring_system epss
scoring_elements 0.0562
published_at 2026-04-09T12:55:00Z
4
value 0.00021
scoring_system epss
scoring_elements 0.05591
published_at 2026-04-12T12:55:00Z
5
value 0.00021
scoring_system epss
scoring_elements 0.05584
published_at 2026-04-13T12:55:00Z
6
value 0.00021
scoring_system epss
scoring_elements 0.05532
published_at 2026-04-16T12:55:00Z
7
value 0.00021
scoring_system epss
scoring_elements 0.05559
published_at 2026-04-04T12:55:00Z
8
value 0.00021
scoring_system epss
scoring_elements 0.05558
published_at 2026-04-07T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-52555
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-52555
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-52555
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108410
reference_id 1108410
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108410
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2374412
reference_id 2374412
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2374412
6
reference_url https://github.com/ceph/ceph/pull/60314
reference_id 60314
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:C/C:H/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-26T20:40:04Z/
url https://github.com/ceph/ceph/pull/60314
7
reference_url https://github.com/ceph/ceph/security/advisories/GHSA-89hm-qq33-2fjm
reference_id GHSA-89hm-qq33-2fjm
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:C/C:H/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-26T20:40:04Z/
url https://github.com/ceph/ceph/security/advisories/GHSA-89hm-qq33-2fjm
Weaknesses
0
cwe_id 272
name Least Privilege Violation
description The elevated privilege level required to perform operations such as chroot() should be dropped immediately after the operation is performed.
1
cwe_id 269
name Improper Privilege Management
description The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.
Exploits
Severity_range_score6.5 - 8.0
Exploitability0.5
Weighted_severity5.9
Risk_score3.0
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-r1ah-c6z7-vyen