cnvd - cnvd-2018-09569

cnvd-2018-09569

Vulnerability from cnvd

Title: glusterfs server未授权访问漏洞

Description:

glusterfs server是一套开源的可扩展网络文件系统。

glusterfs server 3.10.12之前版本和4.0.2之前版本中存在安全漏洞。攻击者可利用该漏洞挂载gluster存储数据卷。

Severity: 中

Patch Name: glusterfs server未授权访问漏洞的补丁

Patch Description:

glusterfs server是一套开源的可扩展网络文件系统。

glusterfs server 3.10.12之前版本和4.0.2之前版本中存在安全漏洞。攻击者可利用该漏洞挂载gluster存储数据卷。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description:

目前厂商已发布升级补丁以修复漏洞，补丁获取链接： https://review.gluster.org/#/c/19899/1..2

Reference: https://nvd.nist.gov/vuln/detail/CVE-2018-1112

Impacted products

Name
['glusterfs server glusterfs server <3.10.12', 'glusterfs server glusterfs server <4.0.2']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2018-1112"
    }
  },
  "description": "glusterfs server\u662f\u4e00\u5957\u5f00\u6e90\u7684\u53ef\u6269\u5c55\u7f51\u7edc\u6587\u4ef6\u7cfb\u7edf\u3002\r\n\r\nglusterfs server 3.10.12\u4e4b\u524d\u7248\u672c\u548c4.0.2\u4e4b\u524d\u7248\u672c\u4e2d\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u6302\u8f7dgluster\u5b58\u50a8\u6570\u636e\u5377\u3002",
  "discovererName": "Pedro Sampaio",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttps://review.gluster.org/#/c/19899/1..2",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2018-09569",
  "openTime": "2018-05-16",
  "patchDescription": "glusterfs server\u662f\u4e00\u5957\u5f00\u6e90\u7684\u53ef\u6269\u5c55\u7f51\u7edc\u6587\u4ef6\u7cfb\u7edf\u3002\r\n\r\nglusterfs server 3.10.12\u4e4b\u524d\u7248\u672c\u548c4.0.2\u4e4b\u524d\u7248\u672c\u4e2d\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u6302\u8f7dgluster\u5b58\u50a8\u6570\u636e\u5377\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "glusterfs server\u672a\u6388\u6743\u8bbf\u95ee\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": [
      "glusterfs server glusterfs server \u003c3.10.12",
      "glusterfs server glusterfs server  \u003c4.0.2"
    ]
  },
  "referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2018-1112",
  "serverity": "\u4e2d",
  "submitTime": "2018-04-27",
  "title": "glusterfs server\u672a\u6388\u6743\u8bbf\u95ee\u6f0f\u6d1e"
}

CVE-2018-1112 (GCVE-0-2018-1112)

Vulnerability from cvelistv5

Published

2018-04-25 12:00

Modified

2024-08-05 03:51

Severity ?

8.0 (High) - CVSS:3.0/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE

CWE-287

Summary

glusterfs server before versions 3.10.12, 4.0.2 is vulnerable when using 'auth.allow' option which allows any unauthenticated gluster client to connect from any network to mount gluster storage volumes. NOTE: this vulnerability exists because of a CVE-2018-1088 regression.

References

▼	URL	Tags
	https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-1112	x_refsource_CONFIRM
	https://review.gluster.org/#/c/19899/1..2	x_refsource_CONFIRM
	https://access.redhat.com/articles/3422521	x_refsource_CONFIRM
	https://access.redhat.com/errata/RHSA-2018:1268	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2018:1269	vendor-advisory, x_refsource_REDHAT
	http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00035.html	vendor-advisory, x_refsource_SUSE

Impacted products

	Vendor	Product	Version
	unspecified	glusterfs	Version: glusterfs 3.10.12 Version: glusterfs 4.0.2

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T03:51:48.898Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-1112"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://review.gluster.org/#/c/19899/1..2"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/articles/3422521"
          },
          {
            "name": "RHSA-2018:1268",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2018:1268"
          },
          {
            "name": "RHSA-2018:1269",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2018:1269"
          },
          {
            "name": "openSUSE-SU-2020:0079",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00035.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "glusterfs",
          "vendor": "unspecified",
          "versions": [
            {
              "status": "affected",
              "version": "glusterfs 3.10.12"
            },
            {
              "status": "affected",
              "version": " glusterfs 4.0.2"
            }
          ]
        }
      ],
      "datePublic": "2018-04-19T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "glusterfs server before versions 3.10.12, 4.0.2 is vulnerable when using \u0027auth.allow\u0027 option which allows any unauthenticated gluster client to connect from any network to mount gluster storage volumes. NOTE: this vulnerability exists because of a CVE-2018-1088 regression."
        }
      ],
      "metrics": [
        {
          "cvssV3_0": {
            "attackComplexity": "LOW",
            "attackVector": "ADJACENT_NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.0"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-287",
              "description": "CWE-287",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2020-01-20T06:06:12",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-1112"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://review.gluster.org/#/c/19899/1..2"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://access.redhat.com/articles/3422521"
        },
        {
          "name": "RHSA-2018:1268",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2018:1268"
        },
        {
          "name": "RHSA-2018:1269",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2018:1269"
        },
        {
          "name": "openSUSE-SU-2020:0079",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00035.html"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "secalert@redhat.com",
          "ID": "CVE-2018-1112",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "glusterfs",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "glusterfs 3.10.12"
                          },
                          {
                            "version_value": " glusterfs 4.0.2"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": ""
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "glusterfs server before versions 3.10.12, 4.0.2 is vulnerable when using \u0027auth.allow\u0027 option which allows any unauthenticated gluster client to connect from any network to mount gluster storage volumes. NOTE: this vulnerability exists because of a CVE-2018-1088 regression."
            }
          ]
        },
        "impact": {
          "cvss": [
            [
              {
                "vectorString": "8.0/CVSS:3.0/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.0"
              }
            ]
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-287"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-1112",
              "refsource": "CONFIRM",
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-1112"
            },
            {
              "name": "https://review.gluster.org/#/c/19899/1..2",
              "refsource": "CONFIRM",
              "url": "https://review.gluster.org/#/c/19899/1..2"
            },
            {
              "name": "https://access.redhat.com/articles/3422521",
              "refsource": "CONFIRM",
              "url": "https://access.redhat.com/articles/3422521"
            },
            {
              "name": "RHSA-2018:1268",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2018:1268"
            },
            {
              "name": "RHSA-2018:1269",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2018:1269"
            },
            {
              "name": "openSUSE-SU-2020:0079",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00035.html"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2018-1112",
    "datePublished": "2018-04-25T12:00:00",
    "dateReserved": "2017-12-04T00:00:00",
    "dateUpdated": "2024-08-05T03:51:48.898Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted