Amanda 3.5.1 allows privilege escalation from the regular user backup to root. The SUID binary located at /lib/amanda/rundump will execute /usr/sbin/dump as root with controlled arguments from the attacker which may lead to escalation of privileges, denial of service, and information disclosure.
References
Configurations
History
06 Jun 2023, 18:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
30 May 2023, 12:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
28 Apr 2023, 18:24
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 6.7 |
26 Apr 2023, 13:06
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.8 |
References | (MISC) https://github.com/zmanda/amanda/pull/197 - Patch | |
References | (MISC) http://www.amanda.org/ - Product | |
References | (MISC) https://github.com/MaherAzzouzi/CVE-2022-37704 - Third Party Advisory | |
References | (MISC) https://github.com/zmanda/amanda/pull/205 - Patch | |
CWE | CWE-77 | |
CPE | cpe:2.3:a:zmanda:amanda:3.5.1:*:*:*:*:*:*:* |
17 Apr 2023, 13:12
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-04-16 01:15
Updated : 2024-02-04 23:37
NVD link : CVE-2022-37704
Mitre link : CVE-2022-37704
CVE.ORG link : CVE-2022-37704
JSON object : View
Products Affected
zmanda
- amanda
CWE
CWE-77
Improper Neutralization of Special Elements used in a Command ('Command Injection')