CVE-2022-2735
published 2022-09-06CVE-2022-2735: A vulnerability was found in the PCS project. This issue occurs due to incorrect permissions on a Unix socket used for internal communication between PCS…
PriorityP340high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
EPSS
0.30%
21.5th percentile
A vulnerability was found in the PCS project. This issue occurs due to incorrect permissions on a Unix socket used for internal communication between PCS daemons. A privilege escalation could happen by obtaining an authentication token for a hacluster user. With the "hacluster" token, this flaw allows an attacker to have complete control over the cluster managed by PCS.
Affected
11 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| clusterlabs | pcs | — | — |
| clusterlabs | pcs | >= 0 < 0.10.8-1+deb11u1 | 0.10.8-1+deb11u1 |
| clusterlabs | pcs | >= 0 < 0.11.3-2 | 0.11.3-2 |
| clusterlabs | pcs | >= 0 < 0.11.3-2 | 0.11.3-2 |
| clusterlabs | pcs | >= 0 < 0.11.3-2 | 0.11.3-2 |
| clusterlabs | pcs | >= 0 < 0.9.149-1ubuntu1.1+esm1 | 0.9.149-1ubuntu1.1+esm1 |
| clusterlabs | pcs | >= 0 < 0.10.4-3ubuntu0.1~esm1 | 0.10.4-3ubuntu0.1~esm1 |
| clusterlabs | pcs | >= 0 < 0.10.11-2ubuntu3+esm1 | 0.10.11-2ubuntu3+esm1 |
| clusterlabs | pcs | 0.10.5 – 0.11.3 | — |
| debian | debian_linux | — | — |
| debian | pcs | < pcs 0.11.3-2 (bookworm) | pcs 0.11.3-2 (bookworm) |
CVSS provenance
nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
osv7.8HIGH
vendor_debian7.8HIGH
vendor_redhat7.8HIGH
vendor_ubuntu6.1MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
pcs vulnerabilities
vendor_ubuntu·2025-07-02·CVSS 6.1
CVE-2022-2735 [MEDIUM] pcs vulnerabilities
Title: pcs vulnerabilities
Summary: Several security issues were fixed in pcs.
Cedric Buissart discovered that pcs did not correctly handle certain
parameters. An attacker could possibly use this issue to leak sensitive
information or elevate their privileges. This issue only affected
Ubuntu 16.04 LTS. (CVE-2018-1086)
Ondrej Mular discovered that pcs did not correctly handle Unix socket
permissions. An attacker could possibly use this issue to elevate their
privileges. This issue only affected Ubuntu 22.04 LTS. (CVE-2022-2735)
It was discovered that pcs did not correctly handle PAM authentication.
An attacker could possibly use this issue to bypass authentication
mechanisms. This issue only affected Ubuntu 20.04 LTS and
Ubuntu 22.04 LTS. (CVE-2022-1049)
It was discovered that pcs did
Red Hat
pcs: obtaining an authentication token for hacluster user could lead to privilege escalation
vendor_redhat·2022-09-01·CVSS 7.8
CVE-2022-2735 [HIGH] CWE-276 pcs: obtaining an authentication token for hacluster user could lead to privilege escalation
pcs: obtaining an authentication token for hacluster user could lead to privilege escalation
A vulnerability was found in the PCS project. This issue occurs due to incorrect permissions on a Unix socket used for internal communication between PCS daemons. A privilege escalation could happen by obtaining an authentication token for a hacluster user. With the "hacluster" token, this flaw allows an attacker to have complete control over the cluster managed by PCS.
A vulnerability was found in the PCS project. This issue occurs due to incorrect permissions on a Unix socket used for internal communication between PCS daemons. A privilege escalation could happen by obtaining an authentication token for a hacluster user. With the "hacluster" token, this flaw allows an attacker to have complete
Debian
CVE-2022-2735: pcs - A vulnerability was found in the PCS project. This issue occurs due to incorrect...
vendor_debian·2022·CVSS 7.8
CVE-2022-2735 [HIGH] CVE-2022-2735: pcs - A vulnerability was found in the PCS project. This issue occurs due to incorrect...
A vulnerability was found in the PCS project. This issue occurs due to incorrect permissions on a Unix socket used for internal communication between PCS daemons. A privilege escalation could happen by obtaining an authentication token for a hacluster user. With the "hacluster" token, this flaw allows an attacker to have complete control over the cluster managed by PCS.
Scope: local
bookworm: resolved (fixed in 0.11.3-2)
bullseye: resolved (fixed in 0.10.8-1+deb11u1)
forky: resolved (fixed in 0.11.3-2)
sid: resolved (fixed in 0.11.3-2)
trixie: resolved (fixed in 0.11.3-2)
OSV
pcs vulnerabilities
osv·2025-07-02·CVSS 6.1
CVE-2018-1086 [MEDIUM] pcs vulnerabilities
pcs vulnerabilities
Cedric Buissart discovered that pcs did not correctly handle certain
parameters. An attacker could possibly use this issue to leak sensitive
information or elevate their privileges. This issue only affected
Ubuntu 16.04 LTS. (CVE-2018-1086)
Ondrej Mular discovered that pcs did not correctly handle Unix socket
permissions. An attacker could possibly use this issue to elevate their
privileges. This issue only affected Ubuntu 22.04 LTS. (CVE-2022-2735)
It was discovered that pcs did not correctly handle PAM authentication.
An attacker could possibly use this issue to bypass authentication
mechanisms. This issue only affected Ubuntu 20.04 LTS and
Ubuntu 22.04 LTS. (CVE-2022-1049)
It was discovered that pcs did not correctly handle the validation of
Node names. An attack
GHSA
GHSA-7xr9-rmm4-cq6v: A vulnerability was found in the PCS project
ghsa_unreviewed·2022-09-07
CVE-2022-2735 [HIGH] CWE-276 GHSA-7xr9-rmm4-cq6v: A vulnerability was found in the PCS project
A vulnerability was found in the PCS project. This issue occurs due to incorrect permissions on a Unix socket used for internal communication between PCS daemons. A privilege escalation could happen by obtaining an authentication token for a hacluster user. With the "hacluster" token, this flaw allows an attacker to have complete control over the cluster managed by PCS.
OSV
CVE-2022-2735: A vulnerability was found in the PCS project
osv·2022-09-06·CVSS 7.8
CVE-2022-2735 [HIGH] CVE-2022-2735: A vulnerability was found in the PCS project
A vulnerability was found in the PCS project. This issue occurs due to incorrect permissions on a Unix socket used for internal communication between PCS daemons. A privilege escalation could happen by obtaining an authentication token for a hacluster user. With the "hacluster" token, this flaw allows an attacker to have complete control over the cluster managed by PCS.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://access.redhat.com/security/cve/CVE-2022-2735https://bugzilla.redhat.com/show_bug.cgi?id=2116815https://www.debian.org/security/2022/dsa-5226https://www.openwall.com/lists/oss-security/2022/09/01/4https://access.redhat.com/security/cve/CVE-2022-2735https://bugzilla.redhat.com/show_bug.cgi?id=2116815https://www.debian.org/security/2022/dsa-5226https://www.openwall.com/lists/oss-security/2022/09/01/4
2022-09-06
Published