Lucene search

CVE-2018-1128

🗓️ 10 Jul 2018 14:00:29Reported by redhatType

Ceph cephx authentication protocol vulnerability in ceph branches master, mimic, luminous and jewel

Reporter	Title	Published	Views	Family All 89
Veracode	Privilege Escalation	16 May 201903:10	–	veracode
NVD	CVE-2018-1128	10 Jul 201814:29	–	nvd
NVD	CVE-2020-25660	23 Nov 202022:15	–	nvd
Tenable Nessus	Photon OS 2.0: Ceph PHSA-2019-2.0-0159	23 Jul 202400:00	–	nessus
Tenable Nessus	Linux Distros Unpatched Vulnerability : CVE-2018-1128	4 Mar 202500:00	–	nessus
Tenable Nessus	openSUSE Security Update : ceph (openSUSE-2018-854)	10 Aug 201800:00	–	nessus
Tenable Nessus	SUSE SLED12 / SLES12 Security Update : ceph (SUSE-SU-2018:2193-1)	6 Aug 201800:00	–	nessus
Tenable Nessus	RHEL 7 : Red Hat Ceph Storage 2.5 (RHSA-2018:2261)	27 Jul 201800:00	–	nessus
Tenable Nessus	Fedora 27 : 1:ceph (2018-8738f5f4a7)	7 Aug 201800:00	–	nessus
Tenable Nessus	Fedora 28 : 1:ceph (2018-327707371e)	3 Jan 201900:00	–	nessus

Nvd

Node

redhat ceph_storageMatch3

redhat ceph_storage_monMatch2

redhat ceph_storage_monMatch3

redhat ceph_storage_osdMatch2

redhat ceph_storage_osdMatch3

redhat enterprise_linuxMatch7.0

redhat enterprise_linux_desktopMatch7.0

redhat enterprise_linux_serverMatch7.0

redhat enterprise_linux_workstationMatch7.0

Node

redhat cephRange10.2.0–13.2.1

Node

debian debian_linuxMatch8.0

debian debian_linuxMatch9.0

Node

opensuse leapMatch15.0

[
  {
    "product": "ceph",
    "vendor": "Red Hat, Inc.",
    "versions": [
      {
        "status": "affected",
        "version": "All versions in branches master, mimic, luminous and jewel"
      }
    ]
  }
]

Source	Link
openwall	www.openwall.com/lists/oss-security/2020/11/17/4
access	www.access.redhat.com/errata/RHSA-2018:2177
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
tracker	www.tracker.ceph.com/issues/24836
openwall	www.openwall.com/lists/oss-security/2020/11/17/3
lists	www.lists.debian.org/debian-lts-announce/2019/03/msg00017.html
access	www.access.redhat.com/errata/RHSA-2018:2274
debian	www.debian.org/security/2018/dsa-4339
access	www.access.redhat.com/errata/RHSA-2018:2179
access	www.access.redhat.com/errata/RHSA-2018:2261

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

10 Jul 2018 14:29Current

7High risk

Vulners AI Score7

CVSS25.4

CVSS37.5

EPSS0.01641