Skip to main content

Glusterfs CVE-2018-10904

HIGH
Untrusted Search Path (CWE-426)
2018-09-04 secalert@redhat.com
8.8
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
8.8 HIGH
AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

1
CVE Published
Sep 04, 2018 - 13:29 nvd
HIGH 8.8

DescriptionNVD

It was found that glusterfs server does not properly sanitize file paths in the "trusted.io-stats-dump" extended attribute which is used by the "debug/io-stats" translator. Attacker can use this flaw to create files and execute arbitrary code. To exploit this attacker would require sufficient access to modify the extended attributes of files on a gluster volume.

AnalysisAI

It was found that glusterfs server does not properly sanitize file paths in the "trusted.io-stats-dump" extended attribute which is used by the "debug/io-stats" translator. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity.

Technical ContextAI

This vulnerability is classified under CWE-426. It was found that glusterfs server does not properly sanitize file paths in the "trusted.io-stats-dump" extended attribute which is used by the "debug/io-stats" translator. Attacker can use this flaw to create files and execute arbitrary code. To exploit this attacker would require sufficient access to modify the extended attributes of files on a gluster volume. Affected products include: Gluster Glusterfs, Redhat Virtualization Host, Redhat Enterprise Linux Server, Debian Debian Linux, Opensuse Leap.

RemediationAI

A vendor patch is available. Apply the latest security update as soon as possible. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.

CVE-2023-26253 HIGH POC
7.5 Feb 21

In Gluster GlusterFS 11.0, there is an xlators/mount/fuse/src/fuse-bridge.c notify stack-based buffer over-read. Rated h

CVE-2018-14651 HIGH
8.8 Oct 31

It was found that the fix for CVE-2018-10927, CVE-2018-10928, CVE-2018-10929, CVE-2018-10930, and CVE-2018-10926 was inc

CVE-2018-10929 HIGH
8.8 Sep 04

A flaw was found in RPC request using gfs2_create_req in glusterfs server. Rated high severity (CVSS 8.8), this vulnerab

CVE-2018-10928 HIGH
8.8 Sep 04

A flaw was found in RPC request using gfs3_symlink_req in glusterfs server which allows symlink destinations to point to

CVE-2018-10926 HIGH
8.8 Sep 04

A flaw was found in RPC request using gfs3_mknod_req supported by glusterfs server. Rated high severity (CVSS 8.8), this

CVE-2018-10907 HIGH
8.8 Sep 04

It was found that glusterfs server is vulnerable to multiple stack based buffer overflows due to functions in server-rpc

CVE-2018-10841 HIGH
8.8 Jun 20

glusterfs is vulnerable to privilege escalation on gluster server nodes. Rated high severity (CVSS 8.8), this vulnerabil

CVE-2018-1112 HIGH
8.8 Apr 25

glusterfs server before versions 3.10.12, 4.0.2 is vulnerable when using 'auth.allow' option which allows any unauthenti

CVE-2018-10927 HIGH
8.1 Sep 04

A flaw was found in RPC request using gfs3_lookup_req in glusterfs server. Rated high severity (CVSS 8.1), this vulnerab

CVE-2018-10923 HIGH
8.1 Sep 04

It was found that the "mknod" call derived from mknod(2) can create files pointing to devices on a glusterfs server node

CVE-2018-10911 HIGH
7.5 Sep 04

A flaw was found in the way dic_unserialize function of glusterfs does not handle negative key length values. Rated high

CVE-2018-14660 MEDIUM
6.5 Nov 01

A flaw was found in glusterfs server through versions 4.1.4 and 3.1.2 which allowed repeated usage of GF_META_LOCK_KEY x

Share

CVE-2018-10904 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy