vulnerability
Red Hat: CVE-2020-25677: Important: Red Hat Ceph Storage 4.2 Security and Bug Fix update (RHSA-2021:0081)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 2 | (AV:L/AC:L/Au:N/C:P/I:N/A:N) | 12/08/2020 | 01/14/2021 | 07/08/2021 |
Severity
2
CVSS
(AV:L/AC:L/Au:N/C:P/I:N/A:N)
Published
12/08/2020
Added
01/14/2021
Modified
07/08/2021
Description
A flaw was found in Ceph-ansible v4.0.41 where it creates an /etc/ceph/iscsi-gateway.conf with insecure default permissions. This flaw allows any user on the system to read sensitive information within this file. The highest threat from this vulnerability is to confidentiality.
Solution(s)
redhat-upgrade-ansible-runner-serviceredhat-upgrade-ceph-ansibleredhat-upgrade-ceph-baseredhat-upgrade-ceph-base-debuginforedhat-upgrade-ceph-commonredhat-upgrade-ceph-common-debuginforedhat-upgrade-ceph-debuginforedhat-upgrade-ceph-debugsourceredhat-upgrade-ceph-fuseredhat-upgrade-ceph-fuse-debuginforedhat-upgrade-ceph-grafana-dashboardsredhat-upgrade-ceph-mdsredhat-upgrade-ceph-mds-debuginforedhat-upgrade-ceph-mgr-debuginforedhat-upgrade-ceph-mon-debuginforedhat-upgrade-ceph-osd-debuginforedhat-upgrade-ceph-radosgwredhat-upgrade-ceph-radosgw-debuginforedhat-upgrade-ceph-selinuxredhat-upgrade-ceph-test-debuginforedhat-upgrade-cockpit-ceph-installerredhat-upgrade-libcephfs-develredhat-upgrade-libcephfs2redhat-upgrade-libcephfs2-debuginforedhat-upgrade-libntirpcredhat-upgrade-libntirpc-debuginforedhat-upgrade-libntirpc-debugsourceredhat-upgrade-librados-develredhat-upgrade-librados-devel-debuginforedhat-upgrade-libradospp-develredhat-upgrade-libradosstriper1redhat-upgrade-libradosstriper1-debuginforedhat-upgrade-librbd-develredhat-upgrade-librgw-develredhat-upgrade-librgw2redhat-upgrade-librgw2-debuginforedhat-upgrade-nfs-ganesharedhat-upgrade-nfs-ganesha-cephredhat-upgrade-nfs-ganesha-ceph-debuginforedhat-upgrade-nfs-ganesha-debuginforedhat-upgrade-nfs-ganesha-debugsourceredhat-upgrade-nfs-ganesha-proxyredhat-upgrade-nfs-ganesha-proxy-debuginforedhat-upgrade-nfs-ganesha-rados-graceredhat-upgrade-nfs-ganesha-rados-grace-debuginforedhat-upgrade-nfs-ganesha-rados-urlsredhat-upgrade-nfs-ganesha-rados-urls-debuginforedhat-upgrade-nfs-ganesha-rgwredhat-upgrade-nfs-ganesha-rgw-debuginforedhat-upgrade-nfs-ganesha-selinuxredhat-upgrade-nfs-ganesha-vfsredhat-upgrade-nfs-ganesha-vfs-debuginforedhat-upgrade-python-ceph-argparseredhat-upgrade-python-cephfsredhat-upgrade-python-rgwredhat-upgrade-python3-ceph-argparseredhat-upgrade-python3-cephfsredhat-upgrade-python3-cephfs-debuginforedhat-upgrade-python3-radosredhat-upgrade-python3-rados-debuginforedhat-upgrade-python3-rbdredhat-upgrade-python3-rbd-debuginforedhat-upgrade-python3-rgwredhat-upgrade-python3-rgw-debuginforedhat-upgrade-rbd-fuse-debuginforedhat-upgrade-rbd-mirrorredhat-upgrade-rbd-mirror-debuginforedhat-upgrade-rbd-nbdredhat-upgrade-rbd-nbd-debuginfo
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.