The admin command in ceph-deploy before 1.5.25 uses world-readable permissions for /etc/ceph/ceph.client.admin.keyring, which allows local users to obtain sensitive information by reading the file.
CPE | Name | Operator | Version |
---|---|---|---|
ceph-deploy | eq | 1.5.12 | |
ceph-deploy | eq | 1.5.21 | |
ceph-deploy | eq | 1.5.6 | |
ceph-deploy | eq | 1.5.3 | |
ceph-deploy | eq | 1.5.17 | |
ceph-deploy | eq | 1.5.16 | |
ceph-deploy | eq | 1.2.3 | |
ceph-deploy | eq | 1.5.9 | |
ceph-deploy | eq | 1.3 | |
ceph-deploy | eq | 1.5.8 |