Lucene search
K

4 matches found

CNVD
CNVD
added 2018/09/06 12:0 a.m.3 views

Red Hat glusterfs server remote code execution vulnerability

Red Hat glusterfs server is an open source distributed file system from Red Hat Red Hat. The system is mainly for media streaming , data analysis and other data and bandwidth intensive tasks to create large-scale distributed storage solutions. A security vulnerability exists in the Red Hat...

8.8CVSS8.8AI score0.03024EPSS
Exploits0References1
OSV
OSV
added 2018/09/04 1:29 p.m.3 views

DEBIAN-CVE-2018-10904

It was found that glusterfs server does not properly sanitize file paths in the "trusted.io-stats-dump" extended attribute which is used by the "debug/io-stats" translator. Attacker can use this flaw to create files and execute arbitrary code. To exploit this attacker would require sufficient...

8.8CVSS7.3AI score0.03024EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2018/09/04 6:25 a.m.6 views

glusterfs: Unsanitized file names in debug/io-stats translator can allow remote attackers to execute arbitrary code

It was found that glusterfs server does not properly sanitize file paths in the "trusted.io-stats-dump" extended attribute which is used by the "debug/io-stats" translator. An attacker can use this flaw to create files and execute arbitrary code. To exploit this, the attacker would require...

8.8CVSS7.5AI score0.03024EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2018/09/04 6:24 a.m.4 views

glusterfs: Unsanitized file names in debug/io-stats translator can allow remote attackers to execute arbitrary code

It was found that glusterfs server does not properly sanitize file paths in the "trusted.io-stats-dump" extended attribute which is used by the "debug/io-stats" translator. An attacker can use this flaw to create files and execute arbitrary code. To exploit this, the attacker would require...

8.8CVSS7.5AI score0.03024EPSS
Exploits0References4
Rows per page
Query Builder