CVE-2018-10841 -- glusterfs-commonID: oval:org.secpod.oval:def:1901648 | Date: (C)2019-04-21 (M)2023-12-20 |
Class: VULNERABILITY | Family: unix |
glusterfs-common is vulnerable to privilege escalation on gluster server nodes. An authenticated gluster client via TLS could use gluster cli with --remote-host command to add it self to trusted storage pool and perform privileged gluster operations like adding other machines to trusted storage pool, start, stop, and delete volumes.
Platform: |
Ubuntu 16.04 |
Ubuntu 18.04 |