Описание
redhat-certification does not properly sanitize paths in rhcertStore.py:__saveResultsFile. A remote attacker could use this flaw to overwrite any file, potentially gaining remote code execution.
It has been discovered that redhat-certification does not properly sanitize paths in rhcertStore.py:__saveResultsFile. A remote attacker could use this flaw to overwrite any file, potentially gaining remote code execution.
Меры по смягчению последствий
If SELinux is enabled it further restricts the set of files an attacker may write to. This prevents some basic attacks that would allow to gain remote code execution, though it is not excluded other means are possible.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Certification for Red Hat Enterprise Linux 6 | redhat-certification | Not affected | ||
| Red Hat Certification for Red Hat Enterprise Linux 7 | redhat-certification | Fixed | RHSA-2018:2373 | 09.08.2018 |
| Red Hat Certification for Red Hat Enterprise Linux 7 | redhat-certification-hardware | Fixed | RHSA-2018:2373 | 09.08.2018 |
| Red Hat Certification for Red Hat Enterprise Linux 7 | redhat-certification-hardware-preview | Fixed | RHSA-2018:2373 | 09.08.2018 |
Показывать по
Дополнительная информация
Статус:
9.8 Critical
CVSS3
Связанные уязвимости
redhat-certification does not properly sanitize paths in rhcertStore.py:__saveResultsFile. A remote attacker could use this flaw to overwrite any file, potentially gaining remote code execution.
redhat-certification does not properly sanitize paths in rhcertStore.py:__saveResultsFile. A remote attacker could use this flaw to overwrite any file, potentially gaining remote code execution.
9.8 Critical
CVSS3