{"containers": {"cna": {"affected": [{"product": "ceph-ansible", "vendor": "n/a", "versions": [{"status": "affected", "version": "ceph-ansible-4.0.41"}]}], "descriptions": [{"lang": "en", "value": "A flaw was found in Ceph-ansible v4.0.41 where it creates an /etc/ceph/iscsi-gateway.conf with insecure default permissions. This flaw allows any user on the system to read sensitive information within this file. The highest threat from this vulnerability is to confidentiality."}], "problemTypes": [{"descriptions": [{"cweId": "CWE-312", "description": "CWE-312", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"dateUpdated": "2021-02-23T18:41:04", "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1892108"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "secalert@redhat.com", "ID": "CVE-2020-25677", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "ceph-ansible", "version": {"version_data": [{"version_value": "ceph-ansible-4.0.41"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "A flaw was found in Ceph-ansible v4.0.41 where it creates an /etc/ceph/iscsi-gateway.conf with insecure default permissions. This flaw allows any user on the system to read sensitive information within this file. The highest threat from this vulnerability is to confidentiality."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "CWE-312"}]}]}, "references": {"reference_data": [{"name": "https://bugzilla.redhat.com/show_bug.cgi?id=1892108", "refsource": "MISC", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1892108"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-04T15:40:36.651Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1892108"}]}]}, "cveMetadata": {"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "assignerShortName": "redhat", "cveId": "CVE-2020-25677", "datePublished": "2020-12-08T00:02:25", "dateReserved": "2020-09-16T00:00:00", "dateUpdated": "2024-08-04T15:40:36.651Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:ceph:ceph-ansible:4.0.41:*:*:*:*:*:*:*", "matchCriteriaId": "3BF789BD-56A5-4AB3-84D4-CAA5CC312B1E", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:redhat:ceph_storage:3.0:*:*:*:*:*:*:*", "matchCriteriaId": "516F4E8E-ED2F-4282-9DAB-D8B378F61258", "vulnerable": true}, {"criteria": "cpe:2.3:a:redhat:ceph_storage:4.0:*:*:*:*:*:*:*", "matchCriteriaId": "D6E54096-5D45-4CB2-AC9A-DDB55BF2B94C", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "A flaw was found in Ceph-ansible v4.0.41 where it creates an /etc/ceph/iscsi-gateway.conf with insecure default permissions. This flaw allows any user on the system to read sensitive information within this file. The highest threat from this vulnerability is to confidentiality."}, {"lang": "es", "value": "Se ha encontrado un fallo en Ceph-ansible v4.0.41 en el que se crea un archivo /etc/ceph/iscsi-gateway.conf con permisos inseguros por defecto. Este fallo permite a cualquier usuario del sistema leer informaci\u00f3n sensible dentro de este archivo. La mayor amenaza de esta vulnerabilidad es la confidencialidad"}], "id": "CVE-2020-25677", "lastModified": "2021-03-04T18:49:09.047", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "LOW", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "NONE", "baseScore": 5.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2020-12-08T01:15:12.070", "references": [{"source": "secalert@redhat.com", "tags": ["Issue Tracking", "Patch", "Vendor Advisory"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1892108"}], "sourceIdentifier": "secalert@redhat.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-312"}], "source": "secalert@redhat.com", "type": "Primary"}]}

{"affected_release": [{"advisory": "RHSA-2021:0081", "cpe": "cpe:/a:redhat:ceph_storage:4::el7", "package": "ceph-ansible-0:4.0.41-1.el8cp", "product_name": "Red Hat Ceph Storage 4.2", "release_date": "2021-01-12T00:00:00Z"}, {"advisory": "RHBA-2021:0305", "cpe": "cpe:/a:redhat:openshift_container_storage:4.6::el8", "package": "ocs4/cephcsi-rhel8:4.6-54.49cf5efdd.release_4.6", "product_name": "Red Hat OpenShift Container Storage 4.6.0 on RHEL-8", "release_date": "2021-02-01T00:00:00Z"}, {"advisory": "RHBA-2021:0305", "cpe": "cpe:/a:redhat:openshift_container_storage:4.6::el8", "package": "ocs4/mcg-core-rhel8:5.6.0-42.6a01c5fc0.5.6", "product_name": "Red Hat OpenShift Container Storage 4.6.0 on RHEL-8", "release_date": "2021-02-01T00:00:00Z"}, {"advisory": "RHBA-2021:0305", "cpe": "cpe:/a:redhat:openshift_container_storage:4.6::el8", "package": "ocs4/mcg-rhel8-operator:5.6.0-41.2279a46.5.6", "product_name": "Red Hat OpenShift Container Storage 4.6.0 on RHEL-8", "release_date": "2021-02-01T00:00:00Z"}, {"advisory": "RHBA-2021:0305", "cpe": "cpe:/a:redhat:openshift_container_storage:4.6::el8", "package": "ocs4/ocs-must-gather-rhel8:4.6-78.3b7455e4.release_4.6", "product_name": "Red Hat OpenShift Container Storage 4.6.0 on RHEL-8", "release_date": "2021-02-01T00:00:00Z"}, {"advisory": "RHBA-2021:0305", "cpe": "cpe:/a:redhat:openshift_container_storage:4.6::el8", "package": "ocs4/ocs-operator-bundle:4.6.2-1", "product_name": "Red Hat OpenShift Container Storage 4.6.0 on RHEL-8", "release_date": "2021-02-01T00:00:00Z"}, {"advisory": "RHBA-2021:0305", "cpe": "cpe:/a:redhat:openshift_container_storage:4.6::el8", "package": "ocs4/ocs-rhel8-operator:4.6-78.3b7455e4.release_4.6", "product_name": "Red Hat OpenShift Container Storage 4.6.0 on RHEL-8", "release_date": "2021-02-01T00:00:00Z"}, {"advisory": "RHBA-2021:0305", "cpe": "cpe:/a:redhat:openshift_container_storage:4.6::el8", "package": "ocs4/rook-ceph-rhel8-operator:4.6-82.8c7ed584.release_4.6", "product_name": "Red Hat OpenShift Container Storage 4.6.0 on RHEL-8", "release_date": "2021-02-01T00:00:00Z"}], "bugzilla": {"description": "ceph-ansible: insecure ownership on /etc/ceph/iscsi-gateway.conf configuration file", "id": "1892108", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1892108"}, "csaw": false, "cvss3": {"cvss3_base_score": "5.5", "cvss3_scoring_vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", "status": "verified"}, "cwe": "CWE-312", "details": ["A flaw was found in Ceph-ansible v4.0.41 where it creates an /etc/ceph/iscsi-gateway.conf with insecure default permissions. This flaw allows any user on the system to read sensitive information within this file. The highest threat from this vulnerability is to confidentiality.", "A flaw was found in Ceph-ansible where it creates an /etc/ceph/iscsi-gateway.conf with insecure default permissions. This flaw allows any user on the system to read sensitive information within this file. The highest threat from this vulnerability is to confidentiality."], "name": "CVE-2020-25677", "package_state": [{"cpe": "cpe:/a:redhat:ceph_storage:2", "fix_state": "Out of support scope", "package_name": "ceph-ansible", "product_name": "Red Hat Ceph Storage 2"}, {"cpe": "cpe:/a:redhat:ceph_storage:3", "fix_state": "Affected", "package_name": "ceph-ansible", "product_name": "Red Hat Ceph Storage 3"}, {"cpe": "cpe:/a:redhat:openstack:13", "fix_state": "Will not fix", "package_name": "ceph-ansible", "product_name": "Red Hat OpenStack Platform 13 (Queens)"}], "public_date": "2020-11-23T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2020-25677\nhttps://nvd.nist.gov/vuln/detail/CVE-2020-25677"], "statement": "Red Hat OpenStack Platform 13 ships the flawed code, however RHOSP does not deploy ceph-iscsi-gw role in any supported scenario. For this reason, a ceph-ansible update will not be provided at this time.\nRed Hat Ceph Storage 3 and 4 create /etc/ceph/iscsi-gateway.conf with the insecure permissions.", "threat_severity": "Moderate", "upstream_fix": "ceph-ansible 4.0.41"}