#VU66440 Permissions, Privileges, and Access Controls in Ceph - CVE-2022-0670

Cybersecurity Help s.r.o.

Published: 2022-08-12

Vulnerability identifier: #VU66440

Vulnerability risk: Medium

CVSSv4.0: 1.3 [CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2022-0670

CWE-ID: CWE-264

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Ceph
Server applications / Other server solutions

Vendor: Red Hat Inc.

Description

The vulnerability allows a remote user to escalate privileges on the system.

The vulnerability exists due to an error within the "volumes" plugin in Ceph Manager. The Openstack manilla owning a Ceph File system "share" enables the owner to read/write any manilla share or entire file system.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

Ceph: 17.2.0 - 17.2.1

External links
https://ceph.io/en/news/blog/2022/v17-2-2-quincy-released/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5O3XMDFZWA2FWU6GAYOVSFJPOUTXN42N/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TIRTTRG5O4YP2TNGDCDOHIHP2DM3DFBT/

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in Red Hat OpenShift Data Foundation 4.13

Ubuntu update for ceph

SUSE update for ceph

openEuler 22.03 LTS update for ceph

Multiple vulnerabilities in Red Hat OpenShift Data Foundation

Red Hat Enterprise Linux 9 update for Ceph

Multiple vulnerabilities in Red Hat Ceph Storage 5.2