A flaw was found in Ceph-ansible v4.0.41 where it creates an /etc/ceph/iscsi-gateway.conf with insecure default permissions. This flaw allows any user on the system to read sensitive information within this file. The highest threat from this vulnerability is to confidentiality.
CPE | Name | Operator | Version |
---|---|---|---|
ceph-ansible | eq | 4.0.41 | |
ceph_storage | eq | 3.0 | |
ceph_storage | eq | 4.0 |