A flaw was found in the way pacemaker’s client-server authentication was implemented. A local attacker could use this flaw, and combine it with other IPC weaknesses, to achieve local privilege escalation.

References

nvd.nist.gov/vuln/detail/CVE-2018-16877

www.cve.org/CVERecord?id=CVE-2018-16877

nvd 1

debiancve 1

cvelist 1

veracode 1

cve 1

ubuntucve 1

osv 2

prion 1

nessus 18

openvas 7

suse 2

oraclelinux 1

fedora 3

ibm 3

ubuntu 1

redhat 2

debian 1

amazon 1

mageia 1

gentoo 1

nvd

CVE-2018-16877

2019-04-18 18:29:00

debiancve

CVE-2018-16877

2019-04-18 18:29:00

cvelist

CVE-2018-16877

2019-04-18 00:00:00

veracode

Privilege Escalation

2019-06-03 00:24:53

cve

CVE-2018-16877

2019-04-18 18:29:00

ubuntucve

CVE-2018-16877

2019-04-17 00:00:00

osv

CVE-2018-16877

2019-04-18 18:29:00

pacemaker - security update

2021-01-06 00:00:00

prion

Privilege escalation

2019-04-18 18:29:00

nessus

openSUSE Security Update : pacemaker (openSUSE-2019-1342)

2019-05-09 00:00:00

Ubuntu 16.04 LTS / 18.04 LTS : Pacemaker vulnerabilities (USN-3952-1)

2019-04-24 00:00:00

Fedora 30 : pacemaker (2019-e4c8de3fb7)

2019-05-02 00:00:00

openvas

openSUSE: Security Advisory for pacemaker (openSUSE-SU-2019:1342-1)

2019-05-09 00:00:00

Mageia: Security Advisory (MGASA-2019-0394)

2022-01-28 00:00:00

Fedora Update for pacemaker FEDORA-2019-b502250ba4

2019-05-07 00:00:00

suse

Security update for pacemaker (important)

2019-05-08 00:00:00

Security update for pacemaker (important)

2019-05-15 00:00:00

oraclelinux

pacemaker security and bug fix update

2019-07-30 00:00:00

fedora

[SECURITY] Fedora 30 Update: pacemaker-2.0.1-2.fc30

2019-04-23 23:44:10

[SECURITY] Fedora 28 Update: pacemaker-1.1.18-3.fc28

2019-05-04 01:17:47

[SECURITY] Fedora 29 Update: pacemaker-2.0.0-5.fc29

2019-05-05 02:44:11

ibm

Security Bulletin: IBM MQ Appliance is affected by Pacemaker vulnerabilities (CVE-2018-16878, CVE-2018-16877, CVE-2019-3885)

2020-12-18 18:18:11

Security Bulletin: IBM MQ is affected by multiple vulnerabilities in Pacemaker

2020-12-18 14:09:33

Security Bulletin: WebSphere Cast Iron and App Connect Professional are affected by vulnerabilities in Pacemaker, ImageMagick, gd-libgd, libxslt, cURL libcurl , Ghostscript.

2022-02-21 04:39:05

ubuntu

Pacemaker vulnerabilities

2019-04-23 00:00:00

redhat

(RHSA-2019:1279) Important: pacemaker security and bug fix update

2019-05-27 15:45:19

(RHSA-2019:1278) Important: pacemaker security update

2019-05-27 15:45:15

debian

[SECURITY] [DLA 2519-1] pacemaker security update

2021-01-06 22:25:21

amazon

Important: pacemaker

2019-08-23 03:37:00

mageia

Updated pacemaker packages fix security vulnerabilities

2019-12-19 16:44:26

gentoo

Pacemaker: Multiple Vulnerabilities

2023-09-29 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

EPSS

Percentile

10.1%

JSON

Related for RH:CVE-2018-16877