Privilege Escalation

2021-01-1404:52:56

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

0.0004 Low

EPSS

Percentile

15.8%

JSON

ceph is vulnerable to privilege escalation. The vulnerability exists as user credentials can be manipulated and stolen by Native CephFS consumers of OpenStack Manila.

CPENameOperatorVersion
libntirpceq1.2.1__3.el7
libntirpceq3.0__1.el7
libntirpceq1.7.0__1.el7
libntirpceq1.7.4__1.el7cp
libntirpceq1.7.2__1.el7
libntirpceq1.7.3__1.el7rhgs
libntirpceq1.8.0__1.el7
libntirpceq3.2__1.el7
libntirpceq1.8.1__1.el7
libntirpceq1.4.3__2.el7

Name	Operator	Version
libntirpc	eq	1.2.1__3.el7
libntirpc	eq	3.0__1.el7
libntirpc	eq	1.7.0__1.el7
libntirpc	eq	1.7.4__1.el7cp
libntirpc	eq	1.7.2__1.el7
libntirpc	eq	1.7.3__1.el7rhgs
libntirpc	eq	1.8.0__1.el7
libntirpc	eq	3.2__1.el7
libntirpc	eq	1.8.1__1.el7
libntirpc	eq	1.4.3__2.el7