VDB

CVE-2021-40348

CVE-2021-40348 PUBLISHED CVSS 8.800000190734863 HIGH

Spacewalk 2.10, and derivatives such as Uyuni 2021.08, allows code injection. rhn-config-satellite.pl doesn't sanitize the configuration filename used to append Spacewalk-specific key-value pair. The script is intended to be run by the tomcat user account with Sudo, according to the installation setup. This can lead to the ability of an attacker to use --option to append arbitrary code to a root-owned file that eventually will be executed by the system. This is fixed in Uyuni spacewalk-admin 4.3.2-1.

EPSS 0.36% · 58.2th percentile

Risk Scores

CVSS 3.1
8.800000190734863
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
0.36%
58.2th percentile

Affected Products

VendorProductVersions
uyuni-projectuyuni2021.08
n/an/an/a
spacewalk_projectspacewalk2.10

Exploit Intelligence

Timeline

  • Nov 1, 2021 EPSS Score
  • Nov 1, 2021 CVE Published
  • Dec 27, 2021 EPSS Score
  • Jan 6, 2022 EPSS Score
  • Feb 4, 2022 EPSS Score
  • Apr 1, 2022 EPSS Score
  • Apr 18, 2022 EPSS Score
  • Jun 12, 2022 EPSS Score
  • Aug 8, 2022 EPSS Score
  • Oct 3, 2022 EPSS Score
  • Nov 28, 2022 EPSS Score
  • Jan 23, 2023 EPSS Score

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›