Vulnerabilities in ClusterLabs
6 resultsCVE-2019-10153MEDIUMA flaw was discovered in fence-agents, prior to version 4.3.4, where using non-ASCII characters in a guest VM's comment or other fields woulEPSS 2.2%CVE-2019-3885LOWA use-after-free flaw was found in pacemaker up to and including version 2.0.1 which could result in certain sensitive information to be leaEPSS 2.0%CVE-2017-2661—ClusterLabs pcs before version 0.9.157 is vulnerable to a cross-site scripting vulnerability due to improper validation of Node name field wEPSS 1.2%CVE-2018-16878MEDIUMA flaw was found in pacemaker up to and including version 2.0.1. An insufficient verification inflicted preference of uncontrolled processesEPSS 0.4%CVE-2018-16877HIGHA flaw was found in the way pacemaker's client-server authentication was implemented in versions up to and including 2.0.0. A local attackerEPSS 0.4%CVE-2016-7035HIGHAn authorization flaw was found in Pacemaker before 1.1.16, where it did not properly guard its IPC interface. An attacker with an unprivileEPSS 0.4%