Lucene search
Redhat.comRH:CVE-2020-10736HistoryMay 19, 2020 - 3:25 a.m.
CVE-2020-10736
2020-05-1903:25:33
redhat.com
access.redhat.com
16
0.0004 Low
EPSS
Percentile
12.8%
An authorization bypass vulnerability was found in Ceph versions 15.2.0 and later, where the ceph-mon and ceph-mgr daemons do not properly restrict access, resulting in gaining access to unauthorized resources. This flaw allows an authenticated client to modify the configuration and possibly conduct further attacks.
Mitigation
Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update as soon as possible.
Related
prion
prion
Authorization
2020-06-22 18:15:00
cvelist
cvelist
CVE-2020-10736
2020-06-22 17:49:38
ubuntucve
ubuntucve
CVE-2020-10736
2020-06-22 00:00:00
veracode
veracode
Authorization Bypass
2021-04-29 12:17:18
debiancve
debiancve
CVE-2020-10736
2020-06-22 18:15:10
osv
osv
CVE-2020-10736
2020-06-22 18:15:10
ceph vulnerabilities
2021-01-28 13:40:18
cve
cve
CVE-2020-10736
2020-06-22 18:15:10
alpinelinux
alpinelinux
CVE-2020-10736
2020-06-22 18:15:10
nvd
nvd
CVE-2020-10736
2020-06-22 18:15:10
ubuntu
ubuntu
Ceph vulnerabilities
2021-01-28 00:00:00
nessus
nessus
Ubuntu 20.04 LTS : Ceph vulnerabilities (USN-4706-1)
2021-01-28 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-4706-1)
2021-01-29 00:00:00