Vulnerabilities > Redhat > Gluster Storage > High

DATE CVE VULNERABILITY TITLE RISK
2017-11-08 CVE-2017-15086 Unspecified vulnerability in Redhat Gluster Storage 3.3
It was discovered that the fix for CVE-2017-12151 was not properly shipped in erratum RHSA-2017:2858 for Red Hat Gluster Storage 3.3 for RHEL 6.
network
high complexity
redhat
7.4
2017-06-27 CVE-2015-1795 Permissions, Privileges, and Access Controls vulnerability in Redhat Gluster Storage 3.2
Red Hat Gluster Storage RPM Package 3.2 allows local users to gain privileges and execute arbitrary code as root.
local
low complexity
redhat CWE-264
7.8
2014-04-07 CVE-2014-0160 Out-of-bounds Read vulnerability in multiple products
The (1) TLS and (2) DTLS implementations in OpenSSL 1.0.1 before 1.0.1g do not properly handle Heartbeat Extension packets, which allows remote attackers to obtain sensitive information from process memory via crafted packets that trigger a buffer over-read, as demonstrated by reading private keys, related to d1_both.c and t1_lib.c, aka the Heartbleed bug.
7.5