5 matches found
CVE-2018-14649
Summary of CVE-2018-14649 : The ceph-isci-cli package in Red Hat Ceph Storage versions 2 and 3 runs the rbd-target-api Python app with Werkzeug in debug mode, exposing an unauthenticated debug shell. This allows remote command execution with the privileges of the running process (often root) via ...
RHEL 7 : ceph-iscsi-cli (RHSA-2018:2838)
An update for ceph-iscsi-cli is now available for Red Hat Ceph Storage 3.1 for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...
RHEL 7 : ceph-iscsi-cli (RHSA-2018:2837)
The remote Redhat Enterprise Linux 7 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2018:2837 advisory. ceph-iscsi-cli provides a CLI interface similar to the targetcli tool used to interact with the kernel LIO subsystem. Security Fixes: It was found th...
Critical: Red Hat Security Advisory: ceph-iscsi-cli security update
An update for ceph-iscsi-cli is now available for Red Hat Ceph Storage 2.5 for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...
Critical: Red Hat Security Advisory: ceph-iscsi-cli security update
An update for ceph-iscsi-cli is now available for Red Hat Ceph Storage 3.1 for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...