pkg:Go/github.com/cubefs/cubefs

11 total CVEsMEDIUM11

✅ Check your installed version

All known vulnerabilities

  • MEDIUM6.5CVE-2023-46740Insecure random string generator used for sensitive data
    from 0
  • MEDIUM6.5CVE-2023-46740Insecure random string generator used for sensitive data
    from 0, < 3.3.1
  • MEDIUM6.5CVE-2023-46739CubeFS timing attack can leak user passwords
    from 0, < 3.3.1
  • MEDIUM6.5CVE-2023-46739CubeFS timing attack can leak user passwords
    from 0
  • MEDIUM6.5CVE-2023-46738Authenticated users can crash the CubeFS servers with maliciously crafted requests
    from 0
  • MEDIUM6.5CVE-2023-46738Authenticated users can crash the CubeFS servers with maliciously crafted requests
    from 0, < 3.3.1
  • MEDIUM6.5CVE-2023-30512CubeFS allows Kubernetes cluster-level privilege escalation
    from 0, <= 3.2.1
  • MEDIUM4.8CVE-2023-46742CubeFS leaks users key in logs in github.com/cubefs/cubefs
    from 0, < 3.3.1
  • MEDIUM4.8CVE-2023-46742CubeFS leaks users key in logs in github.com/cubefs/cubefs
    from 0
  • MEDIUM4.8CVE-2023-46741CubeFS leaks magic secret key when starting Blobstore access service in github.com/cubefs/cubefs
    from 0, < 3.3.1
  • MEDIUM4.8CVE-2023-46741CubeFS leaks magic secret key when starting Blobstore access service in github.com/cubefs/cubefs
    from 0