vulnerability
CentOS Linux: CVE-2020-25677: Important: Red Hat Ceph Storage 4.2 Security and Bug Fix update (CESA-2021:0081)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 2 | (AV:L/AC:L/Au:N/C:P/I:N/A:N) | Dec 8, 2020 | Jan 14, 2021 | May 25, 2023 |
Severity
2
CVSS
(AV:L/AC:L/Au:N/C:P/I:N/A:N)
Published
Dec 8, 2020
Added
Jan 14, 2021
Modified
May 25, 2023
Description
A flaw was found in Ceph-ansible v4.0.41 where it creates an /etc/ceph/iscsi-gateway.conf with insecure default permissions. This flaw allows any user on the system to read sensitive information within this file. The highest threat from this vulnerability is to confidentiality.
Solution(s)
centos-upgrade-ansible-runner-servicecentos-upgrade-ceph-ansiblecentos-upgrade-ceph-basecentos-upgrade-ceph-base-debuginfocentos-upgrade-ceph-commoncentos-upgrade-ceph-common-debuginfocentos-upgrade-ceph-debuginfocentos-upgrade-ceph-debugsourcecentos-upgrade-ceph-fusecentos-upgrade-ceph-fuse-debuginfocentos-upgrade-ceph-grafana-dashboardscentos-upgrade-ceph-mdscentos-upgrade-ceph-mds-debuginfocentos-upgrade-ceph-mgr-debuginfocentos-upgrade-ceph-mon-debuginfocentos-upgrade-ceph-osd-debuginfocentos-upgrade-ceph-radosgwcentos-upgrade-ceph-radosgw-debuginfocentos-upgrade-ceph-selinuxcentos-upgrade-ceph-test-debuginfocentos-upgrade-cockpit-ceph-installercentos-upgrade-libcephfs-develcentos-upgrade-libcephfs2centos-upgrade-libcephfs2-debuginfocentos-upgrade-libntirpccentos-upgrade-libntirpc-debuginfocentos-upgrade-libntirpc-debugsourcecentos-upgrade-librados-develcentos-upgrade-librados-devel-debuginfocentos-upgrade-libradospp-develcentos-upgrade-libradosstriper1centos-upgrade-libradosstriper1-debuginfocentos-upgrade-librbd-develcentos-upgrade-librgw-develcentos-upgrade-librgw2centos-upgrade-librgw2-debuginfocentos-upgrade-nfs-ganeshacentos-upgrade-nfs-ganesha-cephcentos-upgrade-nfs-ganesha-ceph-debuginfocentos-upgrade-nfs-ganesha-debuginfocentos-upgrade-nfs-ganesha-debugsourcecentos-upgrade-nfs-ganesha-proxycentos-upgrade-nfs-ganesha-proxy-debuginfocentos-upgrade-nfs-ganesha-rados-gracecentos-upgrade-nfs-ganesha-rados-grace-debuginfocentos-upgrade-nfs-ganesha-rados-urlscentos-upgrade-nfs-ganesha-rados-urls-debuginfocentos-upgrade-nfs-ganesha-rgwcentos-upgrade-nfs-ganesha-rgw-debuginfocentos-upgrade-nfs-ganesha-selinuxcentos-upgrade-nfs-ganesha-vfscentos-upgrade-nfs-ganesha-vfs-debuginfocentos-upgrade-python-ceph-argparsecentos-upgrade-python-cephfscentos-upgrade-python-rgwcentos-upgrade-python3-ceph-argparsecentos-upgrade-python3-cephfscentos-upgrade-python3-cephfs-debuginfocentos-upgrade-python3-radoscentos-upgrade-python3-rados-debuginfocentos-upgrade-python3-rbdcentos-upgrade-python3-rbd-debuginfocentos-upgrade-python3-rgwcentos-upgrade-python3-rgw-debuginfocentos-upgrade-rbd-fuse-debuginfocentos-upgrade-rbd-mirrorcentos-upgrade-rbd-mirror-debuginfocentos-upgrade-rbd-nbdcentos-upgrade-rbd-nbd-debuginfo
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.