High

DATE	CVE	VULNERABILITY TITLE	RISK
2021-05-28	CVE-2020-1716	Use of Hard-coded Credentials vulnerability in Ceph Ceph-Ansible A flaw was found in the ceph-ansible playbook where it contained hardcoded passwords that were being used as default passwords while deploying Ceph services. network low complexity ceph CWE-798	8.8
2019-11-08	CVE-2019-10222	Improper Handling of Exceptional Conditions vulnerability in multiple products A flaw was found in the Ceph RGW configuration with Beast as the front end handling client requests. network low complexity ceph redhat fedoraproject CWE-755	7.5
2019-03-27	CVE-2019-3821	Missing Release of Resource after Effective Lifetime vulnerability in multiple products A flaw was found in the way civetweb frontend was handling requests for ceph RGW server with SSL enabled. network low complexity ceph canonical CWE-772	7.5
2018-07-10	CVE-2018-10861	Improper Authentication vulnerability in multiple products A flaw was found in the way ceph mon handles user requests. network low complexity ceph redhat opensuse debian CWE-287	8.1