A privilege escalation flaw was found in Amanda 3.5.1 in which the backup user can acquire root privileges. The vulnerable component is the runtar SUID program, which is a wrapper to run /usr/bin/tar with specific arguments that are controllable by the attacker. This program mishandles the arguments passed to tar binary (it expects that the argument name and value are separated with a space; however, separating them with an equals sign is also supported),
References
Configurations
History
03 Dec 2023, 11:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
06 Jun 2023, 18:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
30 May 2023, 12:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
28 Apr 2023, 18:24
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 6.7 |
26 Apr 2023, 14:26
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) https://github.com/zmanda/amanda/pull/196 - Patch | |
References | (MISC) http://www.amanda.org/ - Product | |
References | (MISC) https://github.com/zmanda/amanda/pull/204 - Patch | |
References | (MISC) https://github.com/MaherAzzouzi/CVE-2022-37705 - Exploit, Third Party Advisory | |
References | (MISC) https://github.com/zmanda/amanda/pull/194 - Patch | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.8 |
CWE | CWE-88 | |
CPE | cpe:2.3:a:zmanda:amanda:3.5.1:*:*:*:*:*:*:* |
17 Apr 2023, 13:12
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-04-16 01:15
Updated : 2024-02-04 23:37
NVD link : CVE-2022-37705
Mitre link : CVE-2022-37705
CVE.ORG link : CVE-2022-37705
JSON object : View
Products Affected
zmanda
- amanda
CWE
CWE-88
Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')