CVE-2010-2526

Published Aug 5, 2010

Last updated 3 months ago

CVSS info 4.6

Overview

Description: The cluster logical volume manager daemon (clvmd) in lvm2-cluster in LVM2 before 2.02.72, as used in Red Hat Global File System (GFS) and other products, does not verify client credentials upon a socket connection, which allows local users to cause a denial of service (daemon exit or logical-volume change) or possibly have unspecified other impact via crafted control commands.
Source: secalert@redhat.com
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 4.6
Impact score: 6.4
Exploitability score: 3.9
Vector string: AV:L/AC:L/Au:N/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: CWE-287

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:heinz_mauelshagen:lvm2:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DAAD83C6-111A-4FF6-A5BD-AC16C1F32CE3",
            "versionEndIncluding": "2.02.71"
          },
          {
            "criteria": "cpe:2.3:a:heinz_mauelshagen:lvm2:2.02.50:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B53A8581-7345-426F-AA04-D014416BA388"
          },
          {
            "criteria": "cpe:2.3:a:heinz_mauelshagen:lvm2:2.02.51:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7F564759-54C4-4B21-B776-1F42AC1E79BA"
          },
          {
            "criteria": "cpe:2.3:a:heinz_mauelshagen:lvm2:2.02.52:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AFA7C87A-3938-419D-A906-111B76471284"
          },
          {
            "criteria": "cpe:2.3:a:heinz_mauelshagen:lvm2:2.02.53:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "88306324-0A7C-40E1-9641-E4B2C5BE3D10"
          },
          {
            "criteria": "cpe:2.3:a:heinz_mauelshagen:lvm2:2.02.54:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "701C04CB-E29B-438A-A05E-7CE1C4D5FE39"
          },
          {
            "criteria": "cpe:2.3:a:heinz_mauelshagen:lvm2:2.02.55:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "910DD64E-8E7D-4663-939E-CF27A00B421D"
          },
          {
            "criteria": "cpe:2.3:a:heinz_mauelshagen:lvm2:2.02.56:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4C0AA5BC-0845-4380-A605-E271AB62ADCC"
          },
          {
            "criteria": "cpe:2.3:a:heinz_mauelshagen:lvm2:2.02.57:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "252CB860-882D-43C7-B9B2-A8C6AE3C2441"
          },
          {
            "criteria": "cpe:2.3:a:heinz_mauelshagen:lvm2:2.02.58:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3AAB177B-3E30-4B17-9C69-E9B21D656419"
          },
          {
            "criteria": "cpe:2.3:a:heinz_mauelshagen:lvm2:2.02.59:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5181CD32-3A03-4E96-A9F9-1162E57C6E34"
          },
          {
            "criteria": "cpe:2.3:a:heinz_mauelshagen:lvm2:2.02.60:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C0766B1F-6F9D-42C1-9A81-0CEAF6C16847"
          },
          {
            "criteria": "cpe:2.3:a:heinz_mauelshagen:lvm2:2.02.61:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B247094E-6D73-4A39-9F3B-10ED732EB19D"
          },
          {
            "criteria": "cpe:2.3:a:heinz_mauelshagen:lvm2:2.02.62:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3A9EB88E-BA69-47FF-8DBE-5D7F6D4685B8"
          },
          {
            "criteria": "cpe:2.3:a:heinz_mauelshagen:lvm2:2.02.63:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8FE75832-B904-4E47-A228-385F40F69883"
          },
          {
            "criteria": "cpe:2.3:a:heinz_mauelshagen:lvm2:2.02.64:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "08388E9B-52C3-444A-931F-9F578BFDE149"
          },
          {
            "criteria": "cpe:2.3:a:heinz_mauelshagen:lvm2:2.02.65:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "09F666A4-52E5-44E3-A089-D001FE2B83CD"
          },
          {
            "criteria": "cpe:2.3:a:heinz_mauelshagen:lvm2:2.02.66:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4B5E4CA4-1524-444C-B6A5-1D690246382D"
          },
          {
            "criteria": "cpe:2.3:a:heinz_mauelshagen:lvm2:2.02.67:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F29896B5-2471-400E-A248-4FE19BCF307E"
          },
          {
            "criteria": "cpe:2.3:a:heinz_mauelshagen:lvm2:2.02.68:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D4A89B61-3CC5-4079-8DC9-6544A7FA6860"
          },
          {
            "criteria": "cpe:2.3:a:heinz_mauelshagen:lvm2:2.02.69:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "477CA6D5-A62A-48FE-8A1C-0B87C65100D0"
          },
          {
            "criteria": "cpe:2.3:a:heinz_mauelshagen:lvm2:2.02.70:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "57BCDFF2-FE3E-4F40-AB08-6FA4046D28E8"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:redhat:cluster_suite:*:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "34EEC6AA-4B41-4C17-95A9-07D3F7305985"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux:3:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "444EBE64-D3C8-41E9-8E02-22C6BDA2876B"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux:3.0:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "40D8DAE0-8E75-435C-9BD6-FAEED2ACB47C"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux:4:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "CA2C244C-82F6-49BC-B7F7-54AB989C43E8"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux:4.0:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "6172AF57-B26D-45F8-BE3A-F75ABDF28F49"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux:5:*:advanced_platform:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "8A3C8EE7-9735-4C34-9A8E-0990A917CBA7"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References