Msrc Azl3 Ceph 18.2.2-12 On Azure Linux 3.0 vulnerabilities
3 known vulnerabilities affecting msrc/azl3_ceph_18.2.2-12_on_azure_linux_3.0.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1MEDIUM1LOW1
Vulnerabilities
Page 1 of 1
CVE-2026-4746CRITICALCVSS 10.02026-03-10
CVE-2026-4746 [CRITICAL] CWE-787 Heap Buffer Over-Write Vulenrabilty in timeplus-io/proton
Heap Buffer Over-Write Vulenrabilty in timeplus-io/proton
Mariner: Mariner
GovTech CSG: GovTech CSG
Customer Action Required: Yes
msrc
CVE-2023-26819LOWCVSS 2.92025-04-08
CVE-2023-26819 [LOW] CWE-440 cJSON 1.7.15 might allow a denial of service via a crafted JSON document such as {"a": true, "b": [ null,9999999999999999999999999999999999999999999999912345678901234567]}.
cJSON 1.7.15 might allow a denial of service via a crafted JSON document such as {"a": true, "b": [ null,9999999999999999999999999999999999999999999999912345678901234567]}.
FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected
msrc
CVE-2018-7159MEDIUMCVSS 5.32018-05-08
CVE-2018-7159 [MEDIUM] CWE-115 The HTTP parser in all current versions of Node.js ignores spaces in the `Content-Length` header, allowing input such as `Content-Length: 1 2` to be interpreted as having a value of `12`. The HTTP spe
The HTTP parser in all current versions of Node.js ignores spaces in the `Content-Length` header, allowing input such as `Content-Length: 1 2` to be interpreted as having a value of `12`. The HTTP specification does not allow for spaces in the `Content-Length` value a
msrc