vulnerability
CentOS Linux: CVE-2018-16877: Important: pacemaker security update (Multiple Advisories)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:L/AC:L/Au:N/C:P/I:P/A:P) | 2019-04-18 | 2019-08-28 | 2023-05-25 |
Severity
5
CVSS
(AV:L/AC:L/Au:N/C:P/I:P/A:P)
Published
2019-04-18
Added
2019-08-28
Modified
2023-05-25
Description
A flaw was found in the way pacemaker's client-server authentication was implemented in versions up to and including 2.0.0. A local attacker could use this flaw, and combine it with other IPC weaknesses, to achieve local privilege escalation.
Solution(s)
centos-upgrade-pacemakercentos-upgrade-pacemaker-clicentos-upgrade-pacemaker-cli-debuginfocentos-upgrade-pacemaker-cluster-libscentos-upgrade-pacemaker-cluster-libs-debuginfocentos-upgrade-pacemaker-ctscentos-upgrade-pacemaker-debuginfocentos-upgrade-pacemaker-debugsourcecentos-upgrade-pacemaker-doccentos-upgrade-pacemaker-libscentos-upgrade-pacemaker-libs-debuginfocentos-upgrade-pacemaker-libs-develcentos-upgrade-pacemaker-nagios-plugins-metadatacentos-upgrade-pacemaker-remotecentos-upgrade-pacemaker-remote-debuginfocentos-upgrade-pacemaker-schemas
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.