Lucene search
RedHatRHSA-2018:2837HistoryOct 01, 2018 - 3:03 p.m.
(RHSA-2018:2837) Critical: ceph-iscsi-cli security update
2018-10-0115:03:48
access.redhat.com
66
0.404 Medium
EPSS
Percentile
97.3%
ceph-iscsi-cli provides a CLI interface similar to the targetcli tool used to interact with the kernel LIO subsystem.
Security Fix(es):
- It was found that rbd-target-api service provided by ceph-iscsi-cli was running in debug mode. An unauthenticated attacker could use this to remotely execute arbitrary code and escalate privileges. (CVE-2018-14649)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 7 | noarch | ceph-iscsi-cli | < 2.0-7.el7cp | ceph-iscsi-cli-2.0-7.el7cp.noarch.rpm |
Related
nvd
nvd
CVE-2018-14649
2018-10-09 17:29:01
veracode
veracode
Arbitrary Command Execution
2019-01-15 09:25:06
redhatcve
redhatcve
CVE-2018-14649
2019-10-09 06:14:27
nessus
nessus
RHEL 7 : ceph-iscsi-cli (RHSA-2018:2838)
2018-10-03 00:00:00
RHEL 7 : ceph-iscsi-cli (RHSA-2018:2837)
2018-10-02 00:00:00
redhat
redhat
(RHSA-2018:2838) Critical: ceph-iscsi-cli security update
2018-10-01 15:03:52
cvelist
cvelist
CVE-2018-14649
2018-10-09 17:00:00
f5
f5
K61918302 : ceph-isci-cli vulnerability CVE-2018-14649
2019-03-01 00:00:00
cve
cve
CVE-2018-14649
2018-10-09 17:29:01
prion
prion
Design/Logic Flaw
2018-10-09 17:29:00