CVEs (4)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
2Clusterlabs Redhat3Enterprise Linux High Availability Enterprise Linux High Availability EusPcsJan 22, 2025 May 17, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 It was discovered that an update for PCS package in RHBA-2023:2151 erratum released as part of Red Hat Enterprise Linux 9.2 failed to include the fix for the Webpack issue CVE-2023-28154 (for PCS package), which was prev...Show more |
5Clusterlabs OpensuseOpensuse Project+2 more7Enterprise Linux High Availability Enterprise Linux Resilient StorageLeap+4 moreMay 13, 2026 Mar 24, 2017 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 Pacemaker before 1.1.15, when using pacemaker remote, might allow remote attackers to cause a denial of service (node disconnection) via an unauthenticated connection. |
2Clusterlabs Redhat3Enterprise Linux High Availability Enterprise Linux Resilient StoragePacemakerMay 6, 2026 Aug 12, 2015 N/A· v4 N/A· v3 7.5 HIGH· v2 Pacemaker before 1.1.13 does not properly evaluate added nodes, which allows remote read-only users to gain privileges via an acl command. |
2Fedora Redhat5Enterprise Linux High Availability Enterprise Linux High Availability EusEnterprise Linux Resilient Storage+2 moreMay 6, 2026 May 14, 2015 N/A· v4 N/A· v3 6.8 MEDIUM· v2 The pcs daemon (pcsd) in PCS 0.9.137 and earlier does not set the secure flag for a cookie in an https session, which makes it easier for remote attackers to capture this cookie by intercepting its transmission within an...Show more |