High severity8.1NVD Advisory· Published Apr 18, 2018· Updated Jun 17, 2026
CVE-2018-1088
CVE-2018-1088
Description
A privilege escalation flaw was found in gluster 3.x snapshot scheduler. Any gluster client allowed to mount gluster volumes could also mount shared gluster storage volume and escalate privileges by scheduling malicious cronjob via symlink.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- Red Hat, Inc./glusterfsv5Range: 3.x
Patches
Vulnerability mechanics
References
8- bugzilla.redhat.com/show_bug.cginvdIssue TrackingPatchVendor Advisory
- lists.opensuse.org/opensuse-security-announce/2020-01/msg00035.htmlnvdMailing ListThird Party Advisory
- access.redhat.com/errata/RHSA-2018:1136nvdVendor Advisory
- access.redhat.com/errata/RHSA-2018:1137nvdVendor Advisory
- access.redhat.com/errata/RHSA-2018:1275nvdVendor Advisory
- access.redhat.com/errata/RHSA-2018:1524nvdVendor Advisory
- lists.debian.org/debian-lts-announce/2021/11/msg00000.htmlnvdMailing ListThird Party Advisory
- security.gentoo.org/glsa/201904-06nvdThird Party Advisory
News mentions
0No linked articles in our index yet.