VYPR
Unrated severityOSV Advisory· Published Dec 8, 2020· Updated Aug 4, 2024

CVE-2020-25677

CVE-2020-25677

Description

A flaw was found in Ceph-ansible v4.0.41 where it creates an /etc/ceph/iscsi-gateway.conf with insecure default permissions. This flaw allows any user on the system to read sensitive information within this file. The highest threat from this vulnerability is to confidentiality.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Ceph/Ceph AnsibleOSV2 versions
    beta-3.1.0, v1.0.0, v1.0.1, …+ 1 more
    • (no CPE)range: beta-3.1.0, v1.0.0, v1.0.1, …
    • (no CPE)range: = 4.0.41

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.