Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2021-44225

Опубликовано: 26 нояб. 2021
Источник: nvd
CVSS3: 5.4
CVSS2: 5.5
EPSS Низкий

Описание

In Keepalived through 2.2.4, the D-Bus policy does not sufficiently restrict the message destination, allowing any user to inspect and manipulate any property. This leads to access-control bypass in some situations in which an unrelated D-Bus system service has a settable (writable) property

Ссылки

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:a:keepalived:keepalived:*:*:*:*:*:*:*:*
Версия до 2.2.4 (включая)
Конфигурация 2

Одно из

cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*

EPSS

Процентиль: 17%
0.00053
Низкий

5.4 Medium

CVSS3

5.5 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

ubuntu логотип

CVE-2021-44225

CVSS3: 5.4
ubuntu
больше 3 лет назад

In Keepalived through 2.2.4, the D-Bus policy does not sufficiently restrict the message destination, allowing any user to inspect and manipulate any property. This leads to access-control bypass in some situations in which an unrelated D-Bus system service has a settable (writable) property

redhat логотип

CVE-2021-44225

CVSS3: 7.5
redhat
больше 3 лет назад

In Keepalived through 2.2.4, the D-Bus policy does not sufficiently restrict the message destination, allowing any user to inspect and manipulate any property. This leads to access-control bypass in some situations in which an unrelated D-Bus system service has a settable (writable) property

msrc логотип

CVE-2021-44225

CVSS3: 5.4
msrc
больше 3 лет назад

Описание отсутствует

debian логотип

CVE-2021-44225

CVSS3: 5.4
debian
больше 3 лет назад

In Keepalived through 2.2.4, the D-Bus policy does not sufficiently re ...

suse-cvrf логотип

SUSE-SU-2022:3232-1

suse-cvrf
почти 3 года назад

Security update for keepalived

EPSS

Процентиль: 17%
0.00053
Низкий

5.4 Medium

CVSS3

5.5 Medium

CVSS2

Дефекты

NVD-CWE-Other