CVE-2018-1088 : A privilege escalation flaw was found in gluster 3.x snapshot scheduler. Any glu

A privilege escalation flaw was found in gluster 3.x snapshot scheduler. Any gluster client allowed to mount gluster volumes could also mount shared gluster storage volume and escalate privileges by scheduling malicious cronjob via symlink.

Published 2018-04-18 16:29:00

Updated 2023-02-13 04:53:14

Source Red Hat, Inc.

View at NVD, CVE.org

Vulnerability category: Gain privilege

Products affected by CVE-2018-1088

Debian » Debian Linux » Version: 9.0
cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
Matching versions
Redhat » Enterprise Linux Server » Version: 6.0
cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*
Matching versions
Redhat » Enterprise Linux Server » Version: 7.0
cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
Matching versions
Redhat » Gluster Storage
Versions from including (>=) 3.0 and up to, including, (<=) 3.13.2
cpe:2.3:a:redhat:gluster_storage:*:*:*:*:*:*:*:*
Matching versions
Redhat » Virtualization » Version: 4.0
cpe:2.3:a:redhat:virtualization:4.0:*:*:*:*:*:*:*
Matching versions
Redhat » Virtualization Host » Version: 4.0
cpe:2.3:a:redhat:virtualization_host:4.0:*:*:*:*:*:*:*
Matching versions
Opensuse » Leap » Version: 15.1
cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2018-1088

EPSS FAQ

5.22%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 89 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2018-1088

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
6.8	MEDIUM	AV:N/AC:M/Au:N/C:P/I:P/A:P	8.6	6.4	NIST
Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial
8.1	HIGH	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H	2.2	5.9	NIST
Attack Vector: Network Attack Complexity: High Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: High

CWE ids for CVE-2018-1088

CWE-266 Incorrect Privilege Assignment

A product incorrectly assigns a privilege to a particular actor, creating an unintended sphere of control for that actor.

Assigned by: secalert@redhat.com (Primary)

References for CVE-2018-1088

https://security.gentoo.org/glsa/201904-06

GlusterFS: Multiple Vulnerabilities (GLSA 201904-06) — Gentoo security
Third Party Advisory

CVEs referencing this url
https://access.redhat.com/errata/RHSA-2018:1275

RHSA-2018:1275 - Security Advisory - Red Hat Customer Portal
Vendor Advisory
https://access.redhat.com/errata/RHSA-2018:1136

RHSA-2018:1136 - Security Advisory - Red Hat Customer Portal
Vendor Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=1558721

1558721 – (CVE-2018-1088) CVE-2018-1088 glusterfs: Privilege escalation via gluster_shared_storage when snapshot scheduling is enabled
Issue Tracking;Patch;Vendor Advisory
https://lists.debian.org/debian-lts-announce/2021/11/msg00000.html

[SECURITY] [DLA 2806-1] glusterfs security update
Mailing List;Third Party Advisory

CVEs referencing this url
https://access.redhat.com/errata/RHSA-2018:1524

RHSA-2018:1524 - Security Advisory - Red Hat Customer Portal
Vendor Advisory

CVEs referencing this url
https://access.redhat.com/errata/RHSA-2018:1137

RHSA-2018:1137 - Security Advisory - Red Hat Customer Portal
Vendor Advisory
http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00035.html

[security-announce] openSUSE-SU-2020:0079-1: moderate: Security update f
Mailing List;Third Party Advisory

CVEs referencing this url

Jump to

Vulnerability Details : CVE-2018-1088

Products affected by CVE-2018-1088

Exploit prediction scoring system (EPSS) score for CVE-2018-1088

CVSS scores for CVE-2018-1088

CWE ids for CVE-2018-1088

References for CVE-2018-1088