CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-17954

An Improper Privilege Management in crowbar of SUSE OpenStack Cloud 7, SUSE OpenStack Cloud 8, SUSE OpenStack Cloud 9, SUSE OpenStack Cloud Crowbar 8, SUSE OpenStack Cloud Crowbar 9 allows root users on any crowbar managed node to cause become root on any other node. This issue affects: SUSE OpenStack Cloud 7 crowbar-core versions prior to 4.0+git.1578392992.fabfd186c-9.63.1, crowbar-. SUSE OpenStack Cloud 8 ardana-cinder versions prior to 8.0+git.1579279939.ee7da88-3.39.3, ardana-. SUSE OpenStack Cloud 9 ardana-ansible versions prior to 9.0+git.1581611758.f694f7d-3.16.1, ardana-. SUSE OpenStack Cloud Crowbar 8 crowbar-core versions prior to 5.0+git.1582968668.1a55c77c5-3.35.4, crowbar-. SUSE OpenStack Cloud Crowbar 9 crowbar-core versions prior to 6.0+git.1582892022.cbd70e833-3.19.3, crowbar-.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 32.4%

CVSS Severity

CVSS v3 Score 9.3

CVSS v2 Score 7.2

References

Products affected by CVE-2018-17954

Suse » Openstack Cloud » Version: 7.0

cpe:2.3:a:suse:openstack_cloud:7.0
Suse » Openstack Cloud » Version: 8.0

cpe:2.3:a:suse:openstack_cloud:8.0
Suse » Openstack Cloud » Version: 9.0

cpe:2.3:a:suse:openstack_cloud:9.0
Suse » Openstack Cloud Crowbar » Version: 8.0

cpe:2.3:a:suse:openstack_cloud_crowbar:8.0
Suse » Openstack Cloud Crowbar » Version: 9.0

cpe:2.3:a:suse:openstack_cloud_crowbar:9.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-17954

Products

Pricing

Contact Us