Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2021-25311

Опубликовано: 27 янв. 2021
Источник: nvd
CVSS3: 9.9
CVSS2: 9
EPSS Низкий

Описание

condor_credd in HTCondor before 8.9.11 allows Directory Traversal outside the SEC_CREDENTIAL_DIRECTORY_OAUTH directory, as demonstrated by creating a file under /etc that will later be executed by root.

Ссылки

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:a:wisc:htcondor:*:*:*:*:*:*:*:*
Версия от 8.9.7 (включая) до 8.9.11 (исключая)

EPSS

Процентиль: 86%
0.02768
Низкий

9.9 Critical

CVSS3

9 Critical

CVSS2

Дефекты

CWE-22

Связанные уязвимости

ubuntu логотип

CVE-2021-25311

CVSS3: 9.9
ubuntu
около 5 лет назад

condor_credd in HTCondor before 8.9.11 allows Directory Traversal outside the SEC_CREDENTIAL_DIRECTORY_OAUTH directory, as demonstrated by creating a file under /etc that will later be executed by root.

debian логотип

CVE-2021-25311

CVSS3: 9.9
debian
около 5 лет назад

condor_credd in HTCondor before 8.9.11 allows Directory Traversal outs ...

github логотип

GHSA-h7mc-jr2r-m38g

github
больше 3 лет назад

condor_credd in HTCondor before 8.9.11 allows Directory Traversal outside the SEC_CREDENTIAL_DIRECTORY_OAUTH directory, as demonstrated by creating a file under /etc that will later be executed by root.

EPSS

Процентиль: 86%
0.02768
Низкий

9.9 Critical

CVSS3

9 Critical

CVSS2

Дефекты

CWE-22