BIT-ceph-2020-1759

BIT-ceph-2020-1759 PUBLISHED CVSS 6.800000190734863 MEDIUM

A vulnerability was found in Red Hat Ceph Storage 4 and Red Hat Openshift Container Storage 4.2 where, A nonce reuse vulnerability was discovered in the secure mode of the messenger v2 protocol, which can allow an attacker to forge auth tags and potentially manipulate the data by leveraging the reuse of a nonce in a session. Messages encrypted using a reused nonce value are susceptible to serious confidentiality and integrity attacks.

Risk Scores

CVSS v3.1

6.800000190734863

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N

Affected Products

Vendor	Product	Versions
Bitnami	ceph	0, 0, 0

Timeline

Mar 20, 2026 CVE Published
Mar 20, 2026 CVE Updated

References

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-1759 url
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/P3A2UFR5IUIEXJUCF64GQ5OVLCZGODXE/ url
https://nvd.nist.gov/vuln/detail/CVE-2020-1759 url
https://security.gentoo.org/glsa/202105-39 url

Open in Interactive Console →