CVE-2018-1088

HIGH

Gluster Storage 3.x < 3.13.2 - Privilege Escalation via Snapshot Scheduler Symlink

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2018-1088. PoCs published by MauroEldritch.

AI-analyzed exploit summary This repository contains a working exploit for CVE-2018-1088 and CVE-2018-1112, targeting GlusterFS. The exploit leverages improper access controls in GlusterFS's shared storage volume to escalate privileges by injecting a malicious cron job.

Description

A privilege escalation flaw was found in gluster 3.x snapshot scheduler. Any gluster client allowed to mount gluster volumes could also mount shared gluster storage volume and escalate privileges by scheduling malicious cronjob via symlink.

Exploits (1)

nomisec WORKING POC 10 stars

by MauroEldritch · poc

https://github.com/MauroEldritch/GEVAUDAN

View Code ZIP pw:eip

This repository contains a working exploit for CVE-2018-1088 and CVE-2018-1112, targeting GlusterFS. The exploit leverages improper access controls in GlusterFS's shared storage volume to escalate privileges by injecting a malicious cron job.

Classification

Working Poc 95%

Attack Type

Lpe

Complexity

Moderate

Reliability

Reliable

Target: GlusterFS 3.8.8

No auth needed

Prerequisites: Root access to execute the exploit · GlusterFS client tools installed · Target GlusterFS instance with shared storage enabled

MITRE ATT&CK