CVE-2018-1129

Published Jul 10, 2018

Last updated 4 days ago

CVSS medium 6.5

Overview

Description: A flaw was found in the way signature calculation was handled by cephx authentication protocol. An attacker having access to ceph cluster network who is able to alter the message payload was able to bypass signature checks done by cephx protocol. Ceph branches master, mimic, luminous and jewel are believed to be vulnerable.
Source: secalert@redhat.com
NVD status: Modified

Risk scores

CVSS 3.0

Type: Primary
Base score: 6.5
Impact score: 3.6
Exploitability score: 2.8
Vector string: CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Severity: MEDIUM

CVSS 2.0

Type: Primary
Base score: 3.3
Impact score: 2.9
Exploitability score: 6.5
Vector string: AV:A/AC:L/Au:N/C:N/I:P/A:N

Weaknesses

secalert@redhat.com: CWE-284
nvd@nist.gov: CWE-287

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:redhat:ceph_storage:1.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "26E67C3A-4458-4DC9-B40E-C0B285C87211"
          },
          {
            "criteria": "cpe:2.3:a:redhat:ceph_storage:3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E9184616-421F-4EA9-AC1A-A4C95BBAAC99"
          },
          {
            "criteria": "cpe:2.3:a:redhat:ceph_storage_mon:2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8C2EBAD9-F0D5-4176-9C4D-001B230E699E"
          },
          {
            "criteria": "cpe:2.3:a:redhat:ceph_storage_mon:3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CD2F9BA8-FE0A-43DE-A756-C35A24C3D96E"
          },
          {
            "criteria": "cpe:2.3:a:redhat:ceph_storage_osd:2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AA5F5227-DBDA-4C01-BF7C-4D53F455404F"
          },
          {
            "criteria": "cpe:2.3:a:redhat:ceph_storage_osd:3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A80BACB5-7A56-4BC6-9261-58A3860F4E8C"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "142AD0DD-4CF3-4D74-9442-459CE3347E3A"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "33C068A4-3780-4EAB-A937-6082DF847564"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "51EF4996-72F4-4FA4-814F-F5991E7A8318"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "825ECE2D-E232-46E0-A047-074B34DB1E97"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:ceph:ceph:10.2.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8901022A-8A84-494A-A5BF-358F2CBBDFFF"
          },
          {
            "criteria": "cpe:2.3:a:ceph:ceph:10.2.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "76788B0A-7776-4D0C-B0D7-C855E9A0231E"
          },
          {
            "criteria": "cpe:2.3:a:ceph:ceph:10.2.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7A925DB4-83DC-45D1-A48B-1675A111213B"
          },
          {
            "criteria": "cpe:2.3:a:ceph:ceph:10.2.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D22BA440-CB28-445C-A7F8-CBD6E8965B2E"
          },
          {
            "criteria": "cpe:2.3:a:ceph:ceph:10.2.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A503C653-AFEB-4E5A-872B-AD033C0E2259"
          },
          {
            "criteria": "cpe:2.3:a:ceph:ceph:10.2.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7C00462A-A1B8-42A7-9336-DE1BF5510B6B"
          },
          {
            "criteria": "cpe:2.3:a:ceph:ceph:10.2.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3505D4E2-4EA8-40A4-A57C-46CCA9922EF3"
          },
          {
            "criteria": "cpe:2.3:a:ceph:ceph:10.2.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "09EC481B-79F0-41DB-B95F-D1A221C96F4B"
          },
          {
            "criteria": "cpe:2.3:a:ceph:ceph:10.2.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "31F159B5-AF02-48BE-B994-749F21B9D362"
          },
          {
            "criteria": "cpe:2.3:a:ceph:ceph:10.2.9:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D9684039-7938-405D-B833-4C54BFBD6476"
          },
          {
            "criteria": "cpe:2.3:a:ceph:ceph:10.2.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8FAE4350-8F39-4E78-AB25-17DE76FD57AF"
          },
          {
            "criteria": "cpe:2.3:a:ceph:ceph:10.2.11:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3B2369D2-4413-447C-A0A8-84CA37B1F5B8"
          },
          {
            "criteria": "cpe:2.3:a:ceph:ceph:12.2.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3515BF53-4921-462F-820E-B842BB3FF066"
          },
          {
            "criteria": "cpe:2.3:a:ceph:ceph:12.2.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "48067E54-26F5-4020-BCEA-A65C2536618B"
          },
          {
            "criteria": "cpe:2.3:a:ceph:ceph:12.2.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F9A86B91-78C3-4D02-B7C8-11AAFB1CCCEC"
          },
          {
            "criteria": "cpe:2.3:a:ceph:ceph:12.2.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CDBD084F-4A0B-4231-8465-61F8BE5E57F6"
          },
          {
            "criteria": "cpe:2.3:a:ceph:ceph:12.2.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0885F67A-E01B-4BF2-A760-D452B55C5F69"
          },
          {
            "criteria": "cpe:2.3:a:ceph:ceph:12.2.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DB9D95E9-52F3-459C-89AD-6FCA6A975085"
          },
          {
            "criteria": "cpe:2.3:a:ceph:ceph:12.2.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "087C6821-9A77-4CC8-8AA0-2C51414D9B58"
          },
          {
            "criteria": "cpe:2.3:a:ceph:ceph:12.2.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A667C6AF-76D4-4192-A8BF-395F368EFAE4"
          },
          {
            "criteria": "cpe:2.3:a:ceph:ceph:13.2.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "13BF6806-6E69-4172-9260-2E97FB253339"
          },
          {
            "criteria": "cpe:2.3:a:ceph:ceph:13.2.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DCAE0EE4-BBE9-4DBD-84CC-9A72E97E73E6"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43"
          },
          {
            "criteria": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DEECE5FC-CACF-4496-A3E7-164736409252"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F1E78106-58E6-4D59-990F-75DA575BFAD9"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 3.0

CVSS 2.0

Weaknesses

Social media

Configurations

References