RSS   Vulnerabilities for 'Ceph-deploy'   RSS

2015-06-16
 
CVE-2015-3010

 

 
ceph-deploy before 1.5.23 uses weak permissions (644) for ceph/ceph.client.admin.keyring, which allows local users to obtain sensitive information by reading the file.

 
2015-06-08
 
CVE-2015-4053

 

 
The admin command in ceph-deploy before 1.5.25 uses world-readable permissions for /etc/ceph/ceph.client.admin.keyring, which allows local users to obtain sensitive information by reading the file.

 

 >>> Vendor: CEPH 4 Products
Ceph-deploy
CEPH
Civetweb
Ceph-ansible


Copyright 2024, cxsecurity.com

 

Back to Top