7.5

CVE-2018-1128

It was found that cephx authentication protocol did not verify ceph clients correctly and was vulnerable to replay attack. Any attacker having access to ceph cluster network who is able to sniff packets on network can use this vulnerability to authenticate with ceph service and perform actions allowed by ceph service. Ceph branches master, mimic, luminous and jewel are believed to be vulnerable.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
RedhatCeph Storage Version3
RedhatCeph Storage Mon Version2
RedhatCeph Storage Mon Version3
RedhatCeph Storage Osd Version2
RedhatCeph Storage Osd Version3
RedhatEnterprise Linux Version7.0
RedhatCeph Version >= 10.2.0 <= 13.2.1
DebianDebian Linux Version8.0
DebianDebian Linux Version9.0
OpensuseLeap Version15.0
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 1.37% 0.684
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.5 1.6 5.9
CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov 5.4 5.5 6.4
AV:A/AC:M/Au:N/C:P/I:P/A:P
CWE-287 Improper Authentication

When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

CWE-294 Authentication Bypass by Capture-replay

A capture-replay flaw exists when the design of the product makes it possible for a malicious user to sniff network traffic and bypass authentication by replaying it to the server in question to the same effect as the original message (or with minor changes).

https://lists.debian.org/debian-lts-announce/2019/03/msg00017.html
Third Party Advisory
Mailing List
http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00100.html
Third Party Advisory
https://access.redhat.com/errata/RHSA-2018:2177
Third Party Advisory
https://access.redhat.com/errata/RHSA-2018:2179
Third Party Advisory
https://access.redhat.com/errata/RHSA-2018:2261
Third Party Advisory
https://access.redhat.com/errata/RHSA-2018:2274
Third Party Advisory
https://www.debian.org/security/2018/dsa-4339
Third Party Advisory
http://tracker.ceph.com/issues/24836
Vendor Advisory
Issue Tracking
http://www.openwall.com/lists/oss-security/2020/11/17/3
http://www.openwall.com/lists/oss-security/2020/11/17/4
https://bugzilla.redhat.com/show_bug.cgi?id=1575866
Patch
Third Party Advisory
Issue Tracking
https://github.com/ceph/ceph/commit/5ead97120e07054d80623dada90a5cc764c28468
Patch
Third Party Advisory