CVE-2018-1127

Name of the Vulnerable Software and Affected Versions Red Hat Gluster Storage versions prior to 3.4.0

Description The issue allows attackers to replay session tokens and authenticate as the target user. This can occur when session tokens remain active for a few minutes after a user logs out, enabling attackers to use tokens acquired via sniffing or man-in-the-middle (MITM) attacks.

Recommendations For versions prior to 3.4.0, update to version 3.4.0 or later to resolve the issue.