EUVD-2018-9695

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

Improper privilege management in SUSE OpenStack Cloud allows root access escalation across nodes.

Reporter	Title	Published	Views	Family All 24
Circl	CVE-2018-17954	3 Apr 202013:58	–	circl
CVE	CVE-2018-17954	3 Apr 202007:05	–	cve
Cvelist	CVE-2018-17954 crowbar provision leaks admin password to all nodes in cleartext	3 Apr 202007:05	–	cvelist
NVD	CVE-2018-17954	3 Apr 202007:15	–	nvd
OSV	SUSE-SU-2020:0311-1 Security update for crowbar-core, crowbar-openstack, openstack-neutron-fwaas, rubygem-crowbar-client	3 Feb 202017:18	–	osv
OSV	SUSE-SU-2020:0640-1 Security update for ardana-cinder, ardana-cobbler, ardana-designate, ardana-extensions-example, ardana-extensions-nsx, ardana-glance, ardana-heat, ardana-input-model, ardana-ironic, ardana-keystone, ardana-logging, ardana-monasca, ardana-monasca-transform, ardana-mq, ardana-neutron, ardana-nova, ardana-octavia, ardana-osconfig, ardana-tempest, crowbar-core, crowbar-ha, crowbar-openstack, crowbar-ui, keepalived, mariadb, openstack-cinder, openstack-dashboard, openstack-dashboard-theme-SUSE, openstack-heat, openstack-heat-templates, openstack-horizon-plugin-designate-ui, openstack-horizon-plugin-neutron-lbaas-ui, openstack-ironic, openstack-keystone, openstack-monasca-agent, openstack-neutron, openstack-neutron-gbp, openstack-neutron-vsphere, openstack-nova, openstack-octavia, openstack-octavia-amphora-image, openstack-resource-agents, openstack-sahara, openstack-trove, python-cinderlm, python-congressclient, python-designateclient, python-ironic-lib, python-networking-cisco, python-osc-lib, python-oslo.context, python-oslo.rootwrap, python-oslo.serialization, python-oslo.service, python-stevedore, python-taskflow, rubygem-crowbar-client, rubygem-pumavenv-openstack-swift	11 Mar 202011:30	–	osv
OSV	SUSE-SU-2020:0642-1 Security update for ardana-ansible, ardana-cinder, ardana-cobbler, ardana-db, ardana-horizon, ardana-input-model, ardana-monasca, ardana-mq, ardana-nova, ardana-octavia, ardana-osconfig, ardana-tempest, ardana-tls, crowbar-core, crowbar-ha, crowbar-openstack, crowbar-ui, keepalived, openstack-barbican, openstack-ceilometer, openstack-cinder, openstack-dashboard, openstack-dashboard-theme-SUSE, openstack-designate, openstack-heat, openstack-horizon-plugin-designate-ui, openstack-horizon-plugin-ironic-ui, openstack-horizon-plugin-neutron-lbaas-ui, openstack-horizon-plugin-octavia-ui, openstack-ironic, openstack-ironic-python-agent, openstack-keystone, openstack-magnum, openstack-monasca-agent, openstack-neutron, openstack-neutron-fwaas, openstack-neutron-gbp, openstack-neutron-vpnaas, openstack-nova, openstack-octavia, openstack-octavia-amphora-image, openstack-sahara, openstack-swift, python-amqp, python-ironic-lib, python-keystoneauth1, python-keystoneclient, python-keystonemiddleware, python-ovs, supportutils-plugin-suse-openstack-cloud, rubygem-crowbar-client, rubygem-puma, venv-openstack-horizon	11 Mar 202011:33	–	osv
OSV	SUSE-SU-2020:2876-1 Security update for ardana-ansible, ardana-cinder, ardana-cobbler, ardana-installer-ui, ardana-opsconsole-ui, ardana-osconfig, crowbar-core, grafana, grafana-natel-discrete-panel, openstack-cinder, openstack-dashboard, openstack-ironic, openstack-ironic-python-agent, openstack-manila, openstack-neutron, openstack-neutron-infoblox, openstack-nova, python-Flask-Cors, rubygem-crowbar-client, storm, storm-kit, venv-openstack-cinder, venv-openstack-horizon	7 Oct 202011:40	–	osv
OSV	SUSE-SU-2020:2911-1 Security update for ansible, crowbar-core, crowbar-openstack, grafana, grafana-natel-discrete-panel, openstack-aodh, openstack-barbican, openstack-cinder, openstack-gnocchi, openstack-heat, openstack-ironic, openstack-magnum, openstack-manila, openstack-monasca-agent, openstack-murano, openstack-neutron, openstack-neutron-vpnaas, openstack-nova, openstack-sahara, python-Pillow, rubygem-crowbar-client	13 Oct 202014:46	–	osv
Prion	Input validation	3 Apr 202007:15	–	prion

[
  {
    "enisaIdVendor": [
      {
        "id": "07f800de-70df-3731-bf8e-f0359c1ceb27",
        "vendor": {
          "name": "SUSE"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "443f228d-2546-354d-b8c8-b6466bba2d15",
        "product": {
          "name": "SUSE OpenStack Cloud Crowbar 8"
        },
        "product_version": "crowbar-core <5.0+git.1582968668.1a55c77c5-3.35.4, crowbar-"
      },
      {
        "id": "50dd6293-5bcb-36db-87dd-33d33ae74633",
        "product": {
          "name": "SUSE OpenStack Cloud 7"
        },
        "product_version": "crowbar-core <4.0+git.1578392992.fabfd186c-9.63.1, crowbar-"
      },
      {
        "id": "78c4d8ce-75a7-311d-9645-3a6c5e1bce48",
        "product": {
          "name": "SUSE OpenStack Cloud 9"
        },
        "product_version": "ardana-ansible <9.0+git.1581611758.f694f7d-3.16.1, ardana-"
      },
      {
        "id": "8304fbeb-32a5-3af5-803f-292d38e7505f",
        "product": {
          "name": "SUSE OpenStack Cloud 8"
        },
        "product_version": "ardana-cinder <8.0+git.1579279939.ee7da88-3.39.3, ardana-"
      },
      {
        "id": "ab50faa8-7382-3733-9173-662620be8a57",
        "product": {
          "name": "SUSE OpenStack Cloud Crowbar 9"
        },
        "product_version": "crowbar-core <6.0+git.1582892022.cbd70e833-3.19.3, crowbar-"
      }
    ]
  }
]

Source	Link
suse	www.suse.com/security/cve/CVE-2018-17954.html
bugzilla	www.bugzilla.suse.com/show_bug.cgi
github	www.github.com/advisories/GHSA-293c-r3p4-g63r

07 Oct 2025 00:30Current

8.5High risk

Vulners AI Score8.5

CVSS 3.17.8 - 9.3

CVSS 27.2

EPSS0.00042