Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:28037
HistoryDec 03, 2020 - 8:40 a.m.

Privilege Escalation

2020-12-0308:40:56
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
23
privilege escalation
cephx
authentication
vulnerability
network sniffing

EPSS

0.001

Percentile

48.3%

cephx is vulnerable to privilege escalation attacks. This is because cephx authentication protocol does not verify ceph clients correctly. An attacker who has access to the ceph cluster network is able to sniff packets on the network.