CVE-2018-1129
ceph: cephx uses weak signatures
Severity Score
6.5
*CVSS v3
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
A flaw was found in the way signature calculation was handled by cephx authentication protocol. An attacker having access to ceph cluster network who is able to alter the message payload was able to bypass signature checks done by cephx protocol. Ceph branches master, mimic, luminous and jewel are believed to be vulnerable.
Se ha encontrado un error en la forma en la que el cálculo de firmas es gestionado por el protocolo de autenticación cephx. Un atacante que tenga acceso a la red de clústers ceph y que pueda alterar la carga útil de los mensajes podría omitir las comprobaciones de firma realizadas por el protocolo cephx. Se cree que las ramas de ceph master, mimic, luminous y jewel son vulnerables.
A flaw was found in the way signature calculation was handled by cephx authentication protocol. An attacker having access to ceph cluster network, who is able to alter the message payload, was able to bypass signature checks done by cephx protocol.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2017-12-04 CVE Reserved
- 2018-07-10 CVE Published
- 2023-07-04 EPSS Updated
- 2024-09-17 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-284: Improper Access Control
- CWE-287: Improper Authentication
CAPEC
References (12)
| URL | Tag | Source |
|---|---|---|
| http://packetstormsecurity.com/files/154245/Kernel-Live-Patch-Security-Notice-LSN-0054-1.html | X_refsource_misc |
|
| https://lists.debian.org/debian-lts-announce/2019/03/msg00017.html | Mailing List |
|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://bugzilla.redhat.com/show_bug.cgi?id=1576057 | 2018-07-26 | |
| https://github.com/ceph/ceph/commit/8f396cf35a3826044b089141667a196454c0a587 | 2019-08-29 |
| URL | Date | SRC |
|---|---|---|
| http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00100.html | 2019-08-29 | |
| http://tracker.ceph.com/issues/24837 | 2019-08-29 | |
| https://access.redhat.com/errata/RHSA-2018:2177 | 2019-08-29 | |
| https://access.redhat.com/errata/RHSA-2018:2179 | 2019-08-29 | |
| https://access.redhat.com/errata/RHSA-2018:2261 | 2019-08-29 | |
| https://access.redhat.com/errata/RHSA-2018:2274 | 2019-08-29 | |
| https://www.debian.org/security/2018/dsa-4339 | 2019-08-29 | |
| https://access.redhat.com/security/cve/CVE-2018-1129 | 2018-07-26 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Redhat Search vendor "Redhat" | Ceph Storage Search vendor "Redhat" for product "Ceph Storage" | 1.3 Search vendor "Redhat" for product "Ceph Storage" and version "1.3" | - |
Affected
| ||||||
| Redhat Search vendor "Redhat" | Ceph Storage Search vendor "Redhat" for product "Ceph Storage" | 3 Search vendor "Redhat" for product "Ceph Storage" and version "3" | - |
Affected
| ||||||
| Redhat Search vendor "Redhat" | Ceph Storage Mon Search vendor "Redhat" for product "Ceph Storage Mon" | 2 Search vendor "Redhat" for product "Ceph Storage Mon" and version "2" | - |
Affected
| ||||||
| Redhat Search vendor "Redhat" | Ceph Storage Mon Search vendor "Redhat" for product "Ceph Storage Mon" | 3 Search vendor "Redhat" for product "Ceph Storage Mon" and version "3" | - |
Affected
| ||||||
| Redhat Search vendor "Redhat" | Ceph Storage Osd Search vendor "Redhat" for product "Ceph Storage Osd" | 2 Search vendor "Redhat" for product "Ceph Storage Osd" and version "2" | - |
Affected
| ||||||
| Redhat Search vendor "Redhat" | Ceph Storage Osd Search vendor "Redhat" for product "Ceph Storage Osd" | 3 Search vendor "Redhat" for product "Ceph Storage Osd" and version "3" | - |
Affected
| ||||||
| Redhat Search vendor "Redhat" | Enterprise Linux Search vendor "Redhat" for product "Enterprise Linux" | 7.0 Search vendor "Redhat" for product "Enterprise Linux" and version "7.0" | - |
Affected
| ||||||
| Redhat Search vendor "Redhat" | Enterprise Linux Desktop Search vendor "Redhat" for product "Enterprise Linux Desktop" | 7.0 Search vendor "Redhat" for product "Enterprise Linux Desktop" and version "7.0" | - |
Affected
| ||||||
| Redhat Search vendor "Redhat" | Enterprise Linux Server Search vendor "Redhat" for product "Enterprise Linux Server" | 7.0 Search vendor "Redhat" for product "Enterprise Linux Server" and version "7.0" | - |
Affected
| ||||||
| Redhat Search vendor "Redhat" | Enterprise Linux Workstation Search vendor "Redhat" for product "Enterprise Linux Workstation" | 7.0 Search vendor "Redhat" for product "Enterprise Linux Workstation" and version "7.0" | - |
Affected
| ||||||
| Ceph Search vendor "Ceph" | Ceph Search vendor "Ceph" for product "Ceph" | 10.2.0 Search vendor "Ceph" for product "Ceph" and version "10.2.0" | - |
Affected
| ||||||
| Ceph Search vendor "Ceph" | Ceph Search vendor "Ceph" for product "Ceph" | 10.2.1 Search vendor "Ceph" for product "Ceph" and version "10.2.1" | - |
Affected
| ||||||
| Ceph Search vendor "Ceph" | Ceph Search vendor "Ceph" for product "Ceph" | 10.2.2 Search vendor "Ceph" for product "Ceph" and version "10.2.2" | - |
Affected
| ||||||
| Ceph Search vendor "Ceph" | Ceph Search vendor "Ceph" for product "Ceph" | 10.2.3 Search vendor "Ceph" for product "Ceph" and version "10.2.3" | - |
Affected
| ||||||
| Ceph Search vendor "Ceph" | Ceph Search vendor "Ceph" for product "Ceph" | 10.2.4 Search vendor "Ceph" for product "Ceph" and version "10.2.4" | - |
Affected
| ||||||
| Ceph Search vendor "Ceph" | Ceph Search vendor "Ceph" for product "Ceph" | 10.2.5 Search vendor "Ceph" for product "Ceph" and version "10.2.5" | - |
Affected
| ||||||
| Ceph Search vendor "Ceph" | Ceph Search vendor "Ceph" for product "Ceph" | 10.2.6 Search vendor "Ceph" for product "Ceph" and version "10.2.6" | - |
Affected
| ||||||
| Ceph Search vendor "Ceph" | Ceph Search vendor "Ceph" for product "Ceph" | 10.2.7 Search vendor "Ceph" for product "Ceph" and version "10.2.7" | - |
Affected
| ||||||
| Ceph Search vendor "Ceph" | Ceph Search vendor "Ceph" for product "Ceph" | 10.2.8 Search vendor "Ceph" for product "Ceph" and version "10.2.8" | - |
Affected
| ||||||
| Ceph Search vendor "Ceph" | Ceph Search vendor "Ceph" for product "Ceph" | 10.2.9 Search vendor "Ceph" for product "Ceph" and version "10.2.9" | - |
Affected
| ||||||
| Ceph Search vendor "Ceph" | Ceph Search vendor "Ceph" for product "Ceph" | 10.2.10 Search vendor "Ceph" for product "Ceph" and version "10.2.10" | - |
Affected
| ||||||
| Ceph Search vendor "Ceph" | Ceph Search vendor "Ceph" for product "Ceph" | 10.2.11 Search vendor "Ceph" for product "Ceph" and version "10.2.11" | - |
Affected
| ||||||
| Ceph Search vendor "Ceph" | Ceph Search vendor "Ceph" for product "Ceph" | 12.2.0 Search vendor "Ceph" for product "Ceph" and version "12.2.0" | - |
Affected
| ||||||
| Ceph Search vendor "Ceph" | Ceph Search vendor "Ceph" for product "Ceph" | 12.2.1 Search vendor "Ceph" for product "Ceph" and version "12.2.1" | - |
Affected
| ||||||
| Ceph Search vendor "Ceph" | Ceph Search vendor "Ceph" for product "Ceph" | 12.2.2 Search vendor "Ceph" for product "Ceph" and version "12.2.2" | - |
Affected
| ||||||
| Ceph Search vendor "Ceph" | Ceph Search vendor "Ceph" for product "Ceph" | 12.2.3 Search vendor "Ceph" for product "Ceph" and version "12.2.3" | - |
Affected
| ||||||
| Ceph Search vendor "Ceph" | Ceph Search vendor "Ceph" for product "Ceph" | 12.2.4 Search vendor "Ceph" for product "Ceph" and version "12.2.4" | - |
Affected
| ||||||
| Ceph Search vendor "Ceph" | Ceph Search vendor "Ceph" for product "Ceph" | 12.2.5 Search vendor "Ceph" for product "Ceph" and version "12.2.5" | - |
Affected
| ||||||
| Ceph Search vendor "Ceph" | Ceph Search vendor "Ceph" for product "Ceph" | 12.2.6 Search vendor "Ceph" for product "Ceph" and version "12.2.6" | - |
Affected
| ||||||
| Ceph Search vendor "Ceph" | Ceph Search vendor "Ceph" for product "Ceph" | 12.2.7 Search vendor "Ceph" for product "Ceph" and version "12.2.7" | - |
Affected
| ||||||
| Ceph Search vendor "Ceph" | Ceph Search vendor "Ceph" for product "Ceph" | 13.2.0 Search vendor "Ceph" for product "Ceph" and version "13.2.0" | - |
Affected
| ||||||
| Ceph Search vendor "Ceph" | Ceph Search vendor "Ceph" for product "Ceph" | 13.2.1 Search vendor "Ceph" for product "Ceph" and version "13.2.1" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Debian Linux Search vendor "Debian" for product "Debian Linux" | 8.0 Search vendor "Debian" for product "Debian Linux" and version "8.0" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Debian Linux Search vendor "Debian" for product "Debian Linux" | 9.0 Search vendor "Debian" for product "Debian Linux" and version "9.0" | - |
Affected
| ||||||
| Opensuse Search vendor "Opensuse" | Leap Search vendor "Opensuse" for product "Leap" | 15.0 Search vendor "Opensuse" for product "Leap" and version "15.0" | - |
Affected
| ||||||