Ceph Vulnerability: Unauthorized Access to dm-crypt Encryption Keys

Ceph Vulnerability: Unauthorized Access to dm-crypt Encryption Keys

CVE-2018-14662 · MEDIUM Severity

CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

It was found Ceph versions before 13.2.4 that authenticated ceph users with read only permissions could steal dm-crypt encryption keys used in ceph disk encryption.

Learn more about our User Device Pen Test.