Vulnerabilities > CVE-2022-3650 - Unspecified vulnerability in Redhat Ceph 16.2.9
Attack vector
LOCAL Attack complexity
LOW Privileges required
LOW Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
A privilege escalation flaw was found in Ceph. Ceph-crash.service allows a local attacker to escalate privileges to root in the form of a crash dump, and dump privileged information.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
References
- https://lists.fedoraproject.org/archives/list/[email protected]/message/OEVVWT5ZFLYCVZNDJTDX7R6RY2W7JHP5/
- https://lists.fedoraproject.org/archives/list/[email protected]/message/OEVVWT5ZFLYCVZNDJTDX7R6RY2W7JHP5/
- https://seclists.org/oss-sec/2022/q4/41
- https://seclists.org/oss-sec/2022/q4/41
- https://security.gentoo.org/glsa/202312-10
- https://security.gentoo.org/glsa/202312-10