Lucene search
K

17 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 4:34 a.m.2 views

SUSE CVE-2018-1088

A privilege escalation flaw was found in gluster 3.x snapshot scheduler. Any gluster client allowed to mount gluster volumes could also mount shared gluster storage volume and escalate privileges by scheduling malicious cronjob via symlink...

8.1CVSS8.9AI score0.05374EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2019/10/17 12:41 a.m.24 views

CVE-2018-1088

A privilege escalation flaw was found in gluster snapshot scheduler. Any gluster client allowed to mount gluster volumes could also mount shared gluster storage volume and escalate privileges by scheduling malicious cronjob via symlink. Mitigation To limit exposure of gluster server nodes : 1...

8.3CVSS2.6AI score0.05374EPSS
Exploits1References2
Veracode
Veracode
added 2019/05/02 5:41 a.m.31 views

Arbitrary Code Execution

Red Hat Gluster Storage is a software only scale-out storage solution that provides flexible and affordable unstructured data storage. It unifies data storage and infrastructure, increases performance, and improves availability and manageability to meet enterprise-level storage challenges. Red Ha...

9.3CVSS6.4AI score0.06138EPSS
Exploits0References353Affected Software31
RedHat Linux
RedHat Linux
added 2018/05/02 1:15 p.m.3 views

glusterfs: Privilege escalation via gluster_shared_storage when snapshot scheduling is enabled

A privilege escalation flaw was found in gluster snapshot scheduler. Any gluster client allowed to mount gluster volumes could also mount shared gluster storage volume and escalate privileges by scheduling malicious cronjob via symlink...

8.1CVSS7.3AI score0.05374EPSS
Exploits1References5
NVD
NVD
added 2018/04/18 4:29 p.m.23 views

CVE-2018-1088

A privilege escalation flaw was found in gluster 3.x snapshot scheduler. Any gluster client allowed to mount gluster volumes could also mount shared gluster storage volume and escalate privileges by scheduling malicious cronjob via symlink...

8.1CVSS8.1AI score0.05374EPSS
Exploits1References8
UbuntuCve
UbuntuCve
added 2018/04/18 4:29 p.m.35 views

CVE-2018-1088

A privilege escalation flaw was found in gluster 3.x snapshot scheduler. Any gluster client allowed to mount gluster volumes could also mount shared gluster storage volume and escalate privileges by scheduling malicious cronjob via symlink...

8.1CVSS7.1AI score0.05374EPSS
Exploits1References3
Prion
Prion
added 2018/04/18 4:29 p.m.23 views

Privilege escalation

A privilege escalation flaw was found in gluster 3.x snapshot scheduler. Any gluster client allowed to mount gluster volumes could also mount shared gluster storage volume and escalate privileges by scheduling malicious cronjob via symlink...

6.8CVSS8.4AI score0.05374EPSS
Exploits1References8Affected Software6
OSV
OSV
added 2018/04/18 4:29 p.m.20 views

CVE-2018-1088

A privilege escalation flaw was found in gluster 3.x snapshot scheduler. Any gluster client allowed to mount gluster volumes could also mount shared gluster storage volume and escalate privileges by scheduling malicious cronjob via symlink...

8.1CVSS8.6AI score
Exploits0References8
OSV
OSV
added 2018/04/18 4:29 p.m.4 views

DEBIAN-CVE-2018-1088

A privilege escalation flaw was found in gluster 3.x snapshot scheduler. Any gluster client allowed to mount gluster volumes could also mount shared gluster storage volume and escalate privileges by scheduling malicious cronjob via symlink...

8.1CVSS7.2AI score0.05374EPSS
Exploits1References1
OSV
OSV
added 2018/04/18 4:29 p.m.1 views

UBUNTU-CVE-2018-1088

A privilege escalation flaw was found in gluster 3.x snapshot scheduler. Any gluster client allowed to mount gluster volumes could also mount shared gluster storage volume and escalate privileges by scheduling malicious cronjob via symlink...

8.1CVSS7.2AI score0.05374EPSS
Exploits1References4
CVE
CVE
added 2018/04/18 4:0 p.m.247 views

CVE-2018-1088

CVE-2018-1088 affects GlusterFS 3.x via the snapshot scheduler: an unauthenticated client could exploit the scheduler to mount shared storage and escalate privileges by scheduling a malicious cronjob via a symlink. The issue is tied to a regression/regression-related chain (CVE-2018-1112) in patc...

8.1CVSS8AI score0.05374EPSS
Exploits1References8Affected Software4
Cvelist
Cvelist
added 2018/04/18 4:0 p.m.40 views

CVE-2018-1088

A privilege escalation flaw was found in gluster 3.x snapshot scheduler. Any gluster client allowed to mount gluster volumes could also mount shared gluster storage volume and escalate privileges by scheduling malicious cronjob via symlink...

8.1AI score0.05374EPSS
Exploits1References8
Debian CVE
Debian CVE
added 2018/04/18 4:0 p.m.29 views

CVE-2018-1088

A privilege escalation flaw was found in gluster 3.x snapshot scheduler. Any gluster client allowed to mount gluster volumes could also mount shared gluster storage volume and escalate privileges by scheduling malicious cronjob via symlink...

8.1CVSS8.6AI score0.05374EPSS
Exploits1
RedHat Linux
RedHat Linux
added 2018/04/18 12:6 p.m.3 views

glusterfs: Privilege escalation via gluster_shared_storage when snapshot scheduling is enabled

A privilege escalation flaw was found in gluster snapshot scheduler. Any gluster client allowed to mount gluster volumes could also mount shared gluster storage volume and escalate privileges by scheduling malicious cronjob via symlink...

8.1CVSS7.3AI score0.05374EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2018/04/18 12:4 p.m.2 views

glusterfs: Privilege escalation via gluster_shared_storage when snapshot scheduling is enabled

A privilege escalation flaw was found in gluster snapshot scheduler. Any gluster client allowed to mount gluster volumes could also mount shared gluster storage volume and escalate privileges by scheduling malicious cronjob via symlink...

8.1CVSS7.3AI score0.05374EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2018/04/18 12:0 a.m.9 views

PT-2018-3746 · Red Hat +3 · Gluster +3

Name of the Vulnerable Software and Affected Versions: gluster versions 3.x Description: The issue is related to a privilege escalation flaw in the gluster snapshot scheduler, which can be exploited by scheduling a malicious cronjob via symlink. This flaw allows an attacker to escalate privileges...

8.8CVSS6.7AI score0.05374EPSS
Exploits1References119
RedHat Linux
RedHat Linux
added 2015/07/29 4:26 a.m.41 views

Important: Red Hat Security Advisory: Red Hat Gluster Storage 3.1 update

Red Hat Gluster Storage 3.1, which fixes multiple security issues, several bugs, and adds various enhancements, is now available. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...

9.3CVSS6.1AI score0.06138EPSS
Exploits0References347
Rows per page
Query Builder