CVE-2026-22051
- EPSS 0.18%
- Veröffentlicht 20.04.2026 21:27:36
- Zuletzt bearbeitet 08.07.2026 03:28:39
StorageGRID (formerly StorageGRID Webscale) versions prior to 11.9.0.13 and 12.0.0.6 are susceptible to a Information Disclosure vulnerability. Successful exploit could allow an authenticated attacker with low privileges to run arbitrary metrics quer...
CVE-2025-26517
- EPSS 0.18%
- Veröffentlicht 19.09.2025 18:53:07
- Zuletzt bearbeitet 23.09.2025 14:30:09
StorageGRID (formerly StorageGRID Webscale) versions prior to 11.8.0.15 and 11.9.0.8 are susceptible to a privilege escalation vulnerability. Successful exploit could allow an unauthorized authenticated attacker to discover Grid node names and IP...
CVE-2025-26516
- EPSS 0.36%
- Veröffentlicht 19.09.2025 18:51:12
- Zuletzt bearbeitet 23.09.2025 14:31:10
StorageGRID (formerly StorageGRID Webscale) versions prior to 11.8.0.15 and 11.9.0.8 are susceptible to a Denial of Service vulnerability. Successful exploit could allow an unauthenticated attacker to cause a Denial of Service on the Admin node.
CVE-2025-26515
- EPSS 0.32%
- Veröffentlicht 19.09.2025 18:34:17
- Zuletzt bearbeitet 23.09.2025 14:31:27
StorageGRID (formerly StorageGRID Webscale) versions prior to 11.8.0.15 and 11.9.0.8 without Single Sign-on enabled are susceptible to a Server-Side Request Forgery (SSRF) vulnerability. Successful exploit could allow an unauthenticated attacker ...
CVE-2025-26514
- EPSS 0.22%
- Veröffentlicht 19.09.2025 18:31:54
- Zuletzt bearbeitet 23.09.2025 14:32:00
StorageGRID (formerly StorageGRID Webscale) versions prior to 11.8.0.15 and 11.9.0.8 are susceptible to a Reflected Cross-Site Scripting vulnerability. Successful exploit could allow an attacker to view or modify configuration settings or add or ...
CVE-2025-25292
- EPSS 63.79%
- Veröffentlicht 12.03.2025 20:53:24
- Zuletzt bearbeitet 03.11.2025 20:17:58
ruby-saml provides security assertion markup language (SAML) single sign-on (SSO) for Ruby. An authentication bypass vulnerability was found in ruby-saml prior to versions 1.12.4 and 1.18.0 due to a parser differential. ReXML and Nokogiri parse XML d...
CVE-2025-25291
- EPSS 19.51%
- Veröffentlicht 12.03.2025 20:16:12
- Zuletzt bearbeitet 03.11.2025 20:17:58
ruby-saml provides security assertion markup language (SAML) single sign-on (SSO) for Ruby. An authentication bypass vulnerability was found in ruby-saml prior to versions 1.12.4 and 1.18.0 due to a parser differential. ReXML and Nokogiri parse XML d...
CVE-2024-21994
- EPSS 0.35%
- Veröffentlicht 08.11.2024 21:15:16
- Zuletzt bearbeitet 23.09.2025 14:33:14
StorageGRID (formerly StorageGRID Webscale) versions prior to 11.9 are susceptible to a Denial of Service (DoS) vulnerability. Successful exploit by an authenticated attacker could lead to a service crash.
CVE-2024-21988
- EPSS 0.24%
- Veröffentlicht 14.06.2024 22:15:10
- Zuletzt bearbeitet 13.12.2024 17:26:35
StorageGRID (formerly StorageGRID Webscale) versions prior to 11.7.0.9 and 11.8.0.5 are susceptible to disclosure of sensitive information via complex MiTM attacks due to a vulnerability in the SSH cryptographic implementation.
CVE-2024-21984
- EPSS 0.31%
- Veröffentlicht 16.02.2024 23:15:08
- Zuletzt bearbeitet 13.12.2024 17:55:08
StorageGRID (formerly StorageGRID Webscale) versions prior to 11.8 are susceptible to a difficult to exploit Reflected Cross-Site Scripting (XSS) vulnerability. Successful exploit requires the attacker to know specific information about the target...