Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2022-29799

Опубликовано: 21 сент. 2022
Источник: debian
EPSS Низкий

Описание

A vulnerability was found in networkd-dispatcher. This flaw exists because no functions are sanitized by the OperationalState or the AdministrativeState of networkd-dispatcher. This attack leads to a directory traversal to escape from the “/etc/networkd-dispatcher” base directory.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
networkd-dispatcherfixed2.2.3-1package

Примечания

  • https://www.microsoft.com/security/blog/2022/04/26/microsoft-finds-new-elevation-of-privilege-linux-vulnerability-nimbuspwn/

  • https://gitlab.com/craftyguy/networkd-dispatcher/-/commit/074ff68f08d64a963a13e3cfc4fb3e3fb9006dfe

  • https://gitlab.com/craftyguy/networkd-dispatcher/-/commit/2e226ee027bdc8022f0e10470318f89f25dc6133

  • No security impact in Debian, see #1010303

EPSS

Процентиль: 70%
0.00651
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2022-29799

CVSS3: 5.5
ubuntu
больше 3 лет назад

A vulnerability was found in networkd-dispatcher. This flaw exists because no functions are sanitized by the OperationalState or the AdministrativeState of networkd-dispatcher. This attack leads to a directory traversal to escape from the “/etc/networkd-dispatcher” base directory.

redhat логотип

CVE-2022-29799

CVSS3: 5.5
redhat
почти 4 года назад

A vulnerability was found in networkd-dispatcher. This flaw exists because no functions are sanitized by the OperationalState or the AdministrativeState of networkd-dispatcher. This attack leads to a directory traversal to escape from the “/etc/networkd-dispatcher” base directory.

nvd логотип

CVE-2022-29799

CVSS3: 5.5
nvd
больше 3 лет назад

A vulnerability was found in networkd-dispatcher. This flaw exists because no functions are sanitized by the OperationalState or the AdministrativeState of networkd-dispatcher. This attack leads to a directory traversal to escape from the “/etc/networkd-dispatcher” base directory.

github логотип

GHSA-637r-47cq-j74p

CVSS3: 5.5
github
больше 3 лет назад

A vulnerability was found in networkd-dispatcher. This flaw exists because no functions are sanitized by the OperationalState or the AdministrativeState of networkd-dispatcher. This attack leads to a directory traversal to escape from the “/etc/networkd-dispatcher” base directory.

EPSS

Процентиль: 70%
0.00651
Низкий