Vulnerability identifier: #VU12150

Vulnerability risk: Low

CVSSv3.1: 7.9 [CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C]

CVE-ID: CVE-2018-1088

CWE-ID: CWE-61

Exploitation vector: Local network

Exploits in database: 1

• March 18, 2020
  • GEVAUDAN (Exploit for Red Hat / GlusterFS CVE-2018-1088 & CVE-2018-1112, featured @ DEFCON 26, Las Vegas!) [Github]

Impact: Code execution

Vulnerable software:
Red Hat Gluster Storage Server for On-premise
Server applications / File servers (FTP/HTTP)

Vendor: Red Hat Inc.