Browse all 6 CVE security advisories affecting ClusterLabs. AI-powered Chinese analysis, POCs, and references for each vulnerability.
ClusterLabs develops open-source high-availability clustering solutions for Linux systems, focusing on resource management and service availability. Historically, their products have been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from input validation flaws and insecure default configurations. While no major public security incidents have been widely documented, the six CVEs on record highlight potential risks in web interfaces and API endpoints. Their security posture reflects typical challenges in complex distributed systems, requiring careful deployment and regular updates to mitigate exposure.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2019-10153 | fence-agents 安全漏洞 — fence-agentsCWE-172 | 5.0 | - | 2019-07-30 |
| CVE-2018-16877 | Pacemaker 授权问题漏洞 — pacemakerCWE-287 | 7.8 | - | 2019-04-18 |
| CVE-2018-16878 | Pacemaker 资源管理错误漏洞 — pacemakerCWE-400 | 5.5 | - | 2019-04-18 |
| CVE-2019-3885 | Pacemaker 资源管理错误漏洞 — pacemakerCWE-416 | 5.5 | - | 2019-04-18 |
| CVE-2016-7035 | Pacemaker 权限许可和访问控制漏洞 — pacemakerCWE-285 | 7.8 | - | 2018-09-10 |
| CVE-2017-2661 | ClusterLabs pcs 跨站脚本漏洞 — pcsCWE-79 | 6.1 | - | 2018-03-12 |
This page lists every published CVE security advisory associated with ClusterLabs. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.