CVE Vulnerabilities

CVE-2020-27781

Insufficiently Protected Credentials

Published: Dec 18, 2020 | Modified: Nov 07, 2023
CVSS 3.x
7.1
HIGH
Source:
NVD
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
CVSS 2.x
3.6 LOW
AV:L/AC:L/Au:N/C:P/I:P/A:N
RedHat/V2
RedHat/V3
7.1 IMPORTANT
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
Ubuntu
MEDIUM

User credentials can be manipulated and stolen by Native CephFS consumers of OpenStack Manila, resulting in potential privilege escalation. An Open Stack Manila user can request access to a share to an arbitrary cephx user, including existing users. The access key is retrieved via the interface drivers. Then, all users of the requesting OpenStack project can view the access key. This enables the attacker to target any resource that the user has access to. This can be done to even admin users, compromising the ceph administrator. This flaw affects Ceph versions prior to 14.2.16, 15.x prior to 15.2.8, and 16.x prior to 16.2.0.

Weakness

The product transmits or stores authentication credentials, but it uses an insecure method that is susceptible to unauthorized interception and/or retrieval.

Affected Software

Name Vendor Start Version End Version
Ceph Redhat * 14.2.16 (excluding)
Ceph Redhat 15.0.0 (including) 15.2.8 (excluding)
Ceph Redhat 16.0.0 (including) 16.2.0 (excluding)
Red Hat Ceph Storage 3 - ELS RedHat ceph-2:12.2.12-139.el7cp *
Red Hat Ceph Storage 3 - ELS RedHat ceph-ansible-0:3.2.56-1.el7cp *
Red Hat Ceph Storage 3 - ELS RedHat cephmetrics-0:2.0.10-1.el7cp *
Red Hat Ceph Storage 3 - ELS RedHat grafana-0:5.2.4-3.el7cp *
Red Hat Ceph Storage 3 - ELS RedHat tcmu-runner-0:1.4.0-3.el7cp *
Red Hat Ceph Storage 4.2 RedHat ceph-2:14.2.11-95.el8cp *
Red Hat OpenShift Container Storage 4.6.0 on RHEL-8 RedHat ocs4/cephcsi-rhel8:4.6-54.49cf5efdd.release_4.6 *
Red Hat OpenShift Container Storage 4.6.0 on RHEL-8 RedHat ocs4/mcg-core-rhel8:5.6.0-42.6a01c5fc0.5.6 *
Red Hat OpenShift Container Storage 4.6.0 on RHEL-8 RedHat ocs4/mcg-rhel8-operator:5.6.0-41.2279a46.5.6 *
Red Hat OpenShift Container Storage 4.6.0 on RHEL-8 RedHat ocs4/ocs-must-gather-rhel8:4.6-78.3b7455e4.release_4.6 *
Red Hat OpenShift Container Storage 4.6.0 on RHEL-8 RedHat ocs4/ocs-operator-bundle:4.6.2-1 *
Red Hat OpenShift Container Storage 4.6.0 on RHEL-8 RedHat ocs4/ocs-rhel8-operator:4.6-78.3b7455e4.release_4.6 *
Red Hat OpenShift Container Storage 4.6.0 on RHEL-8 RedHat ocs4/rook-ceph-rhel8-operator:4.6-82.8c7ed584.release_4.6 *
Ceph Ubuntu bionic *
Ceph Ubuntu devel *
Ceph Ubuntu esm-infra-legacy/trusty *
Ceph Ubuntu esm-infra/xenial *
Ceph Ubuntu focal *
Ceph Ubuntu groovy *
Ceph Ubuntu hirsute *
Ceph Ubuntu impish *
Ceph Ubuntu jammy *
Ceph Ubuntu kinetic *
Ceph Ubuntu lunar *
Ceph Ubuntu mantic *
Ceph Ubuntu noble *
Ceph Ubuntu oracular *
Ceph Ubuntu precise/esm *
Ceph Ubuntu trusty *
Ceph Ubuntu trusty/esm *
Ceph Ubuntu upstream *
Ceph Ubuntu xenial *

Potential Mitigations

References