Medium severity6.5NVD Advisory· Published Jul 12, 2016· Updated May 6, 2026

CVE-2016-5009

Description

The handle_command function in mon/Monitor.cc in Ceph allows remote authenticated users to cause a denial of service (segmentation fault and ceph monitor crash) via an (1) empty or (2) crafted prefix.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

tracker.ceph.com/issues/16297nvdVendor Advisory
lists.opensuse.org/opensuse-updates/2016-12/msg00126.htmlnvd
access.redhat.com/errata/RHSA-2016:1384nvd
access.redhat.com/errata/RHSA-2016:1385nvd
github.com/ceph/ceph/commit/957ece7e95d8f8746191fd9629622d4457d690d6nvd
github.com/ceph/ceph/pull/9700nvd

News mentions

No linked articles in our index yet.

cvss	0.423
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000