[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2022-2735":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T14:55:33.319Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":131,"aliases":132,"duplicate_of":9,"upstream":133,"downstream":134,"duplicates":151,"related":152,"reserved_at":9,"published_at":153,"modified_at":154,"state":155,"summary":156,"references_raw":165,"kevs":191,"epss":192,"epss_history":195,"metrics":468,"affected":474},"CVE-2022-2735","A vulnerability was found in the PCS project. This issue occurs due to incorrect permissions on a Unix socket used for internal communication between PCS daemons. A privilege escalation could happen by obtaining an authentication token for a hacluster user. With the \"hacluster\" token, this flaw allows an attacker to have complete control over the cluster managed by PCS.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-276","Incorrect Default Permissions","During installation, installed file permissions are set to allow anyone to modify those files.","weakness","Draft","Base","Medium",[20,68,127],{"id":21,"name":22,"techniques":23},"CAPEC-1","Accessing Functionality Not Properly Constrained by ACLs",[24],{"id":25,"name":26,"tactics":27,"countermeasures":43},"T1574.010","Services File Permissions Weakness",[28,31,34,37,40],{"id":29,"name":30},"TA0110","Persistence",{"id":32,"name":33},"TA0111","Privilege Escalation",{"id":35,"name":36},"TA0030","Defense Evasion",{"id":38,"name":39},"TA0005","Stealth",{"id":41,"name":42},"TA0104","Execution",[44,49,53,58,63],{"id":45,"name":46,"tactic":47},"D3-SWI","Software Inventory",{"name":48},"Model",{"id":50,"name":51,"tactic":52},"D3-AVE","Asset Vulnerability Enumeration",{"name":48},{"id":54,"name":55,"tactic":56},"D3-SBV","Service Binary Verification",{"name":57},"Detect",{"id":59,"name":60,"tactic":61},"D3-SU","Software Update",{"name":62},"Harden",{"id":64,"name":65,"tactic":66},"D3-RS","Restore Software",{"name":67},"Restore",{"id":69,"name":70,"techniques":71},"CAPEC-127","Directory Indexing",[72],{"id":73,"name":74,"tactics":75,"countermeasures":79},"T1083","File and Directory Discovery",[76],{"id":77,"name":78},"TA0102","Discovery",[80,84,88,93,98,102,106,111,115,119,123],{"id":81,"name":82,"tactic":83},"D3-FA","File Analysis",{"name":57},{"id":85,"name":86,"tactic":87},"D3-FIM","File Integrity Monitoring",{"name":57},{"id":89,"name":90,"tactic":91},"D3-FEV","File Eviction",{"name":92},"Evict",{"id":94,"name":95,"tactic":96},"D3-DF","Decoy File",{"name":97},"Deceive",{"id":99,"name":100,"tactic":101},"D3-FE","File Encryption",{"name":62},{"id":103,"name":104,"tactic":105},"D3-RF","Restore File",{"name":67},{"id":107,"name":108,"tactic":109},"D3-LFP","Local File Permissions",{"name":110},"Isolate",{"id":112,"name":113,"tactic":114},"D3-CF","Content Filtering",{"name":110},{"id":116,"name":117,"tactic":118},"D3-RFAM","Remote File Access Mediation",{"name":110},{"id":120,"name":121,"tactic":122},"D3-CQ","Content Quarantine",{"name":110},{"id":124,"name":125,"tactic":126},"D3-CM","Content Modification",{"name":110},{"id":128,"name":129,"techniques":130},"CAPEC-81","Web Server Logs Tampering",[],[],[],[],[135,137,139,141,143,145,147,149],{"_key":136},"RHSA-2022:6312",{"_key":138},"RHSA-2022:6313",{"_key":140},"RHSA-2022:6314",{"_key":142},"RHSA-2022:6341",{"_key":144},"UBUNTU-CVE-2022-2735",{"_key":146},"DSA-5226-1",{"_key":148},"DEBIAN-CVE-2022-2735",{"_key":150},"USN-7614-1",[],[],"2022-09-06T17:18:51.000Z","2024-08-03T00:46:04.116Z","Modified",{"cisa_kev":157,"cisa_ransomware":157,"cisa_vendor":9,"epss_severity":158,"epss_score":159,"severity":160,"severity_score":161,"severity_version":162,"severity_source":163,"severity_vector":164,"severity_status":155},false,"low",0.00051,"high",7.8,"v3.1","nvd","CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",[166,175,181,185],{"url":167,"sources":168,"tags":170},"https://bugzilla.redhat.com/show_bug.cgi?id=2116815",[169,163],"cve.org",[171,172,173,174],"X Refsource MISC","Issue Tracking","Patch","Third Party Advisory",{"url":176,"sources":177,"tags":178},"https://www.openwall.com/lists/oss-security/2022/09/01/4",[169,163],[171,179,180,174],"Mailing List","Release Notes",{"url":182,"sources":183,"tags":184},"https://access.redhat.com/security/cve/CVE-2022-2735",[169,163],[171,174],{"url":186,"sources":187,"tags":188},"https://www.debian.org/security/2022/dsa-5226",[169,163],[189,190,174],"Vendor Advisory","X Refsource DEBIAN",[],{"date":193,"score":159,"percentile":194},"2026-06-04",0.16425,[196,200,203,206,209,212,215,218,221,224,227,230,233,236,239,243,246,249,252,255,258,261,264,267,270,273,277,281,284,287,290,293,296,299,302,305,308,311,314,317,320,323,325,328,331,334,337,340,343,346,349,352,355,358,361,364,367,370,373,376,379,382,385,388,391,394,397,400,402,405,408,411,413,416,419,422,425,428,431,435,438,441,444,447,450,453,456,459,462,465],{"date":197,"score":198,"percentile":199},"2025-11-04",0.00062,0.19528,{"date":201,"score":198,"percentile":202},"2025-11-05",0.19532,{"date":204,"score":198,"percentile":205},"2025-11-06",0.19535,{"date":207,"score":198,"percentile":208},"2025-11-07",0.19547,{"date":210,"score":198,"percentile":211},"2025-11-08",0.19551,{"date":213,"score":198,"percentile":214},"2025-11-09",0.19523,{"date":216,"score":198,"percentile":217},"2025-11-10",0.19478,{"date":219,"score":198,"percentile":220},"2025-11-11",0.19481,{"date":222,"score":198,"percentile":223},"2025-11-12",0.19522,{"date":225,"score":198,"percentile":226},"2025-11-13",0.19544,{"date":228,"score":198,"percentile":229},"2025-11-14",0.19538,{"date":231,"score":198,"percentile":232},"2025-11-15",0.19505,{"date":234,"score":198,"percentile":235},"2025-11-16",0.19465,{"date":237,"score":198,"percentile":238},"2025-11-17",0.19392,{"date":240,"score":241,"percentile":242},"2025-11-18",0.00063,0.15459,{"date":244,"score":241,"percentile":245},"2025-11-19",0.15473,{"date":247,"score":241,"percentile":248},"2025-11-20",0.15455,{"date":250,"score":198,"percentile":251},"2025-11-21",0.19385,{"date":253,"score":198,"percentile":254},"2025-11-22",0.19387,{"date":256,"score":198,"percentile":257},"2025-11-23",0.1936,{"date":259,"score":198,"percentile":260},"2025-11-24",0.19324,{"date":262,"score":198,"percentile":263},"2025-11-25",0.19314,{"date":265,"score":198,"percentile":266},"2025-11-26",0.19306,{"date":268,"score":198,"percentile":269},"2025-11-27",0.19303,{"date":271,"score":198,"percentile":272},"2025-11-28",0.19286,{"date":274,"score":275,"percentile":276},"2025-11-29",0.00044,0.13173,{"date":278,"score":279,"percentile":280},"2025-11-30",0.00041,0.11973,{"date":282,"score":279,"percentile":283},"2025-12-01",0.12014,{"date":285,"score":279,"percentile":286},"2025-12-02",0.12022,{"date":288,"score":279,"percentile":289},"2025-12-03",0.12029,{"date":291,"score":279,"percentile":292},"2025-12-04",0.12016,{"date":294,"score":279,"percentile":295},"2025-12-05",0.12064,{"date":297,"score":279,"percentile":298},"2025-12-06",0.12079,{"date":300,"score":279,"percentile":301},"2025-12-07",0.12072,{"date":303,"score":279,"percentile":304},"2025-12-08",0.12078,{"date":306,"score":279,"percentile":307},"2025-12-09",0.12136,{"date":309,"score":279,"percentile":310},"2025-12-10",0.122,{"date":312,"score":279,"percentile":313},"2025-12-11",0.12223,{"date":315,"score":279,"percentile":316},"2025-12-12",0.12265,{"date":318,"score":279,"percentile":319},"2025-12-13",0.12285,{"date":321,"score":279,"percentile":322},"2025-12-14",0.1227,{"date":324,"score":279,"percentile":313},"2025-12-15",{"date":326,"score":279,"percentile":327},"2025-12-16",0.12207,{"date":329,"score":279,"percentile":330},"2025-12-17",0.12295,{"date":332,"score":279,"percentile":333},"2025-12-18",0.12342,{"date":335,"score":279,"percentile":336},"2025-12-19",0.12352,{"date":338,"score":279,"percentile":339},"2025-12-20",0.12353,{"date":341,"score":279,"percentile":342},"2025-12-21",0.12332,{"date":344,"score":275,"percentile":345},"2025-12-22",0.13604,{"date":347,"score":275,"percentile":348},"2025-12-23",0.13602,{"date":350,"score":275,"percentile":351},"2025-12-24",0.136,{"date":353,"score":275,"percentile":354},"2025-12-25",0.13672,{"date":356,"score":275,"percentile":357},"2025-12-26",0.13635,{"date":359,"score":159,"percentile":360},"2025-12-27",0.16275,{"date":362,"score":275,"percentile":363},"2025-12-28",0.1361,{"date":365,"score":275,"percentile":366},"2025-12-29",0.13505,{"date":368,"score":275,"percentile":369},"2025-12-30",0.13513,{"date":371,"score":275,"percentile":372},"2025-12-31",0.13575,{"date":374,"score":275,"percentile":375},"2026-01-01",0.13645,{"date":377,"score":275,"percentile":378},"2026-01-02",0.13633,{"date":380,"score":275,"percentile":381},"2026-01-03",0.13599,{"date":383,"score":275,"percentile":384},"2026-01-04",0.13523,{"date":386,"score":275,"percentile":387},"2026-01-05",0.1348,{"date":389,"score":275,"percentile":390},"2026-01-06",0.13491,{"date":392,"score":275,"percentile":393},"2026-01-07",0.13526,{"date":395,"score":275,"percentile":396},"2026-01-08",0.13576,{"date":398,"score":275,"percentile":399},"2026-01-09",0.13585,{"date":401,"score":275,"percentile":348},"2026-01-10",{"date":403,"score":275,"percentile":404},"2026-01-11",0.1353,{"date":406,"score":275,"percentile":407},"2026-01-12",0.13499,{"date":409,"score":275,"percentile":410},"2026-01-13",0.13472,{"date":412,"score":275,"percentile":404},"2026-01-14",{"date":414,"score":275,"percentile":415},"2026-01-15",0.13528,{"date":417,"score":275,"percentile":418},"2026-01-16",0.13572,{"date":420,"score":275,"percentile":421},"2026-01-17",0.13589,{"date":423,"score":275,"percentile":424},"2026-01-18",0.13514,{"date":426,"score":275,"percentile":427},"2026-01-19",0.13452,{"date":429,"score":275,"percentile":430},"2026-01-20",0.13433,{"date":432,"score":433,"percentile":434},"2026-01-21",0.00033,0.09166,{"date":436,"score":433,"percentile":437},"2026-01-22",0.09151,{"date":439,"score":275,"percentile":440},"2026-01-23",0.13459,{"date":442,"score":275,"percentile":443},"2026-01-24",0.13502,{"date":445,"score":275,"percentile":446},"2026-01-25",0.13448,{"date":448,"score":275,"percentile":449},"2026-01-26",0.1338,{"date":451,"score":275,"percentile":452},"2026-01-27",0.13378,{"date":454,"score":275,"percentile":455},"2026-01-28",0.13385,{"date":457,"score":275,"percentile":458},"2026-01-29",0.13366,{"date":460,"score":275,"percentile":461},"2026-01-30",0.13374,{"date":463,"score":275,"percentile":464},"2026-01-31",0.13382,{"date":466,"score":275,"percentile":467},"2026-02-01",0.13391,[469],{"source":163,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":470,"cvss_v4_0":9},{"baseScore":161,"baseSeverity":471,"vectorString":164,"impactScore":472,"exploitabilityScore":473},"HIGH",9.8,4.6,[475,487],{"ecosystem":9,"name":476,"vendor":477,"product":476,"cpe_part":478,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":479},"pcs","clusterlabs","a",[480],{"version":481,"is_range":482,"range_type":483,"version_start":484,"version_start_type":485,"version_end":486,"version_end_type":485,"fixed_in":9},"gte0.10.5_lte0.11.3",true,"cpe","0.10.5","including","0.11.3",{"ecosystem":9,"name":488,"vendor":489,"product":490,"cpe_part":491,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":492},"debian linux","debian","debian_linux","o",[493],{"version":494,"is_range":157,"range_type":483,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"11.0"]