CVE-2018-1086: Infoleak
First published: Fri Mar 16 2018(Updated: )
pcs before versions 0.9.164 and 0.10 is vulnerable to a debug parameter removal bypass. REST interface of the pcsd service did not properly remove the pcs debug argument from the /run_pcs query, possibly disclosing sensitive information. A remote attacker with a valid token could use this flaw to elevate their privilege.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Clusterlabs Pacemaker Command Line Interface | =0.9.164 | |
| Clusterlabs Pacemaker Command Line Interface | =0.10 | |
| Debian Debian Linux | =9.0 | |
| Redhat Enterprise Linux Server Eus | =7.5 | |
| Redhat Enterprise Linux Server Eus | =7.6 | |
| debian/pcs | 0.10.1-2 0.10.1-2+deb10u1 0.10.8-1+deb11u1 0.11.5-1 0.11.6-1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://security-tracker.debian.org/tracker/CVE-2018-1086
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1086
- http://www.openwall.com/lists/oss-security/2018/04/09/2
- https://security-tracker.debian.org/tracker/CVE-2018-1079
- https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=895313
- https://access.redhat.com/errata/RHSA-2018:1060
- https://access.redhat.com/errata/RHSA-2018:1927
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-1086
- https://www.debian.org/security/2018/dsa-4169
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1565090
- https://bugzilla.redhat.com/show_bug.cgi?id=1557366
- https://www.openwall.com/lists/oss-security/2018/04/09/2
Frequently Asked Questions
What is the vulnerability ID?
The vulnerability ID is CVE-2018-1086.
What is the severity of CVE-2018-1086?
The severity of CVE-2018-1086 is high with a severity value of 7.5.
Which software versions are affected by CVE-2018-1086?
pcs versions 0.9.164 and 0.10 are affected by CVE-2018-1086.
How can the vulnerability be exploited?
A remote attacker with a valid token can exploit this vulnerability by using the flaw in the pcs debug argument removal from the /run_pcs query in the REST interface of the pcsd service.
What is the recommended remedy for CVE-2018-1086?
The recommended remedy for CVE-2018-1086 is to upgrade to versions 0.9.164 or 0.10.
- collector/debian-bugs
- alias/CVE-2018-1086
- collector/security-tracker-debian
- collector/nvd-index
- agent/type
- agent/weakness
- agent/first-publish-date
- agent/last-modified-date
- agent/softwarecombine
- collector/redhat-bugzilla
- source/Red Hat
- agent/software-canonical-lookup
- agent/references
- agent/severity
- agent/author
- agent/tags
- agent/event
- agent/description
- collector/mitre-cve
- source/MITRE
- package-manager/debian
- vendor/clusterlabs
- canonical/clusterlabs pacemaker command line interface
- version/clusterlabs pacemaker command line interface/0.9.164
- version/clusterlabs pacemaker command line interface/0.10
- vendor/debian
- canonical/debian debian linux
- version/debian debian linux/9.0
- vendor/redhat
- canonical/redhat enterprise linux server eus
- version/redhat enterprise linux server eus/7.5
- version/redhat enterprise linux server eus/7.6
- package-manager/redhat