vulnerability
Red Hat: CVE-2022-0670: Moderate: Red Hat Ceph Storage Security, Bug Fix, and Enhancement Update (RHSA-2022:5997)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 9 | (AV:N/AC:L/Au:N/C:C/I:C/A:N) | 2022-07-25 | 2022-08-11 | 2025-01-28 |
Severity
9
CVSS
(AV:N/AC:L/Au:N/C:C/I:C/A:N)
Published
2022-07-25
Added
2022-08-11
Modified
2025-01-28
Description
A flaw was found in Openstack manilla owning a Ceph File system "share", which enables the owner to read/write any manilla share or entire file system. The vulnerability is due to a bug in the "volumes" plugin in Ceph Manager. This allows an attacker to compromise Confidentiality and Integrity of a file system. Fixed in RHCS 5.2 and Ceph 17.2.2.
Solution(s)
redhat-upgrade-ceph-ansibleredhat-upgrade-ceph-baseredhat-upgrade-ceph-base-debuginforedhat-upgrade-ceph-commonredhat-upgrade-ceph-common-debuginforedhat-upgrade-ceph-debugsourceredhat-upgrade-ceph-fuseredhat-upgrade-ceph-fuse-debuginforedhat-upgrade-ceph-grafana-dashboardsredhat-upgrade-ceph-immutable-object-cacheredhat-upgrade-ceph-immutable-object-cache-debuginforedhat-upgrade-ceph-mdsredhat-upgrade-ceph-mds-debuginforedhat-upgrade-ceph-mgr-debuginforedhat-upgrade-ceph-mibredhat-upgrade-ceph-mon-debuginforedhat-upgrade-ceph-osd-debuginforedhat-upgrade-ceph-radosgwredhat-upgrade-ceph-radosgw-debuginforedhat-upgrade-ceph-resource-agentsredhat-upgrade-ceph-selinuxredhat-upgrade-ceph-test-debuginforedhat-upgrade-cephadmredhat-upgrade-cephadm-ansibleredhat-upgrade-cephfs-mirrorredhat-upgrade-cephfs-mirror-debuginforedhat-upgrade-cephfs-topredhat-upgrade-gperftools-debugsourceredhat-upgrade-gperftools-libsredhat-upgrade-gperftools-libs-debuginforedhat-upgrade-leveldbredhat-upgrade-leveldb-debuginforedhat-upgrade-leveldb-debugsourceredhat-upgrade-libcephfs-develredhat-upgrade-libcephfs2redhat-upgrade-libcephfs2-debuginforedhat-upgrade-libcephsqlite-debuginforedhat-upgrade-liboathredhat-upgrade-liboath-debuginforedhat-upgrade-libpskc-debuginforedhat-upgrade-librados-develredhat-upgrade-librados-devel-debuginforedhat-upgrade-libradospp-develredhat-upgrade-libradosstriper1redhat-upgrade-libradosstriper1-debuginforedhat-upgrade-librbd-develredhat-upgrade-librgw-develredhat-upgrade-librgw2redhat-upgrade-librgw2-debuginforedhat-upgrade-libunwindredhat-upgrade-libunwind-debuginforedhat-upgrade-libunwind-debugsourceredhat-upgrade-nfs-ganesharedhat-upgrade-nfs-ganesha-cephredhat-upgrade-nfs-ganesha-ceph-debuginforedhat-upgrade-nfs-ganesha-debuginforedhat-upgrade-nfs-ganesha-debugsourceredhat-upgrade-nfs-ganesha-proxyredhat-upgrade-nfs-ganesha-proxy-debuginforedhat-upgrade-nfs-ganesha-rados-graceredhat-upgrade-nfs-ganesha-rados-grace-debuginforedhat-upgrade-nfs-ganesha-rados-urlsredhat-upgrade-nfs-ganesha-rados-urls-debuginforedhat-upgrade-nfs-ganesha-rgwredhat-upgrade-nfs-ganesha-rgw-debuginforedhat-upgrade-nfs-ganesha-selinuxredhat-upgrade-nfs-ganesha-vfsredhat-upgrade-nfs-ganesha-vfs-debuginforedhat-upgrade-oath-toolkit-debuginforedhat-upgrade-oath-toolkit-debugsourceredhat-upgrade-oathtool-debuginforedhat-upgrade-pam_oath-debuginforedhat-upgrade-pskctool-debuginforedhat-upgrade-python3-ceph-argparseredhat-upgrade-python3-ceph-commonredhat-upgrade-python3-cephfsredhat-upgrade-python3-cephfs-debuginforedhat-upgrade-python3-radosredhat-upgrade-python3-rados-debuginforedhat-upgrade-python3-rbdredhat-upgrade-python3-rbd-debuginforedhat-upgrade-python3-rgwredhat-upgrade-python3-rgw-debuginforedhat-upgrade-rbd-fuse-debuginforedhat-upgrade-rbd-mirrorredhat-upgrade-rbd-mirror-debuginforedhat-upgrade-rbd-nbdredhat-upgrade-rbd-nbd-debuginfo
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.