A privilege escalation flaw was found in Ceph. Ceph-crash.service allows a local attacker to escalate privileges to root in the form of a crash dump, and dump privileged information.
Advisories
Source ID Title
Debian DLA Debian DLA DLA-4310-1 ceph security update
Ubuntu USN Ubuntu USN USN-6063-1 Ceph vulnerabilities
Ubuntu USN Ubuntu USN USN-6292-1 Ceph vulnerability
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published:

Updated: 2025-02-13T16:32:49.502Z

Reserved: 2022-10-21T00:00:00.000Z

Link: CVE-2022-3650

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2023-01-17T19:15:11.433

Modified: 2024-11-21T07:19:57.320

Link: CVE-2022-3650

cve-icon Redhat

Severity : Important

Publid Date: 2022-10-25T00:00:00Z

Links: CVE-2022-3650 - Bugzilla

cve-icon OpenCVE Enrichment

No data.