Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:rpm/redhat/ceph@2:17.2.6-148?arch=el9cp
purl pkg:rpm/redhat/ceph@2:17.2.6-148?arch=el9cp
Next non-vulnerable version None.
Latest non-vulnerable version None.
Risk 3.1
Vulnerabilities affecting this package (5)
Vulnerability Summary Fixed by
VCID-3gg5-1921-rbfs
Aliases:
CVE-2018-14041
GHSA-pj7m-g53m-7638
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') In Bootstrap, XSS is possible in the data-target property of scrollspy. There are no reported fixed by versions.
VCID-47cr-h639-tqd4
Aliases:
CVE-2023-43040
rgw: improperly verified POST keys There are no reported fixed by versions.
VCID-br4c-7x9j-g3f6
Aliases:
CVE-2018-20676
GHSA-3mgp-fx93-9xv5
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') In Bootstrap, XSS is possible in the tooltip data-viewport attribute. There are no reported fixed by versions.
VCID-hqne-7h6h-3ff8
Aliases:
CVE-2018-20677
GHSA-ph58-4vrj-w6hr
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') In Bootstrap, XSS is possible in the affix configuration target property. There are no reported fixed by versions.
VCID-xnny-adma-pycj
Aliases:
CVE-2023-46159
ceph: RGW crash upon misconfigured CORS rule There are no reported fixed by versions.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-01T14:24:32.576770+00:00 RedHat Importer Affected by VCID-3gg5-1921-rbfs https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-14041.json 38.0.0
2026-04-01T14:22:52.720995+00:00 RedHat Importer Affected by VCID-hqne-7h6h-3ff8 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-20677.json 38.0.0
2026-04-01T14:22:52.561339+00:00 RedHat Importer Affected by VCID-br4c-7x9j-g3f6 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-20676.json 38.0.0
2026-04-01T13:52:35.140527+00:00 RedHat Importer Affected by VCID-47cr-h639-tqd4 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-43040.json 38.0.0
2026-04-01T13:52:30.159701+00:00 RedHat Importer Affected by VCID-xnny-adma-pycj https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-46159.json 38.0.0