Vulnerabilities

CVE-2018-1112

by Fred · 25/04/2018

glusterfs server before versions 3.10.12, 4.0.2 is vulnerable when using ‘auth.allow’ option which allows any unauthenticated gluster client to connect from any network to mount gluster storage volumes. NOTE: this vulnerability exists because of a CVE-2018-1088 regression.

Date published : 2018-04-25

https://access.redhat.com/articles/3422521

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-1112

Similar

Tags: Cybersecurity Alert