Описание
Pacemaker before 1.1.13 does not properly evaluate added nodes, which allows remote read-only users to gain privileges via an acl command.
Ссылки
- Third Party Advisory
- Third Party Advisory
- Third Party Advisory
- Issue Tracking
- Third Party Advisory
- Third Party Advisory
- Third Party Advisory
- Issue Tracking
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:o:redhat:enterprise_linux_high_availability:6.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_high_availability:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_resilient_storage:6.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_resilient_storage:7.0:*:*:*:*:*:*:*
Конфигурация 2Версия до 1.1.12 (включая)
cpe:2.3:a:clusterlabs:pacemaker:*:*:*:*:*:*:*:*
EPSS
Процентиль: 72%
0.00714
Низкий
7.5 High
CVSS2
Дефекты
CWE-264
Связанные уязвимости
ubuntu
больше 10 лет назад
Pacemaker before 1.1.13 does not properly evaluate added nodes, which allows remote read-only users to gain privileges via an acl command.
redhat
почти 11 лет назад
Pacemaker before 1.1.13 does not properly evaluate added nodes, which allows remote read-only users to gain privileges via an acl command.
debian
больше 10 лет назад
Pacemaker before 1.1.13 does not properly evaluate added nodes, which ...
github
больше 3 лет назад
Pacemaker before 1.1.13 does not properly evaluate added nodes, which allows remote read-only users to gain privileges via an acl command.
EPSS
Процентиль: 72%
0.00714
Низкий
7.5 High
CVSS2
Дефекты
CWE-264