A flaw was found in SSSD, where the sssctl command was vulnerable to shell command injection via the logs-fetch and cache-expire subcommands. This flaw allows an attacker to trick the root user into running a specially crafted sssctl command, such as via sudo, to gain root access. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.
CVSS 3.x
| Source | Score | Severity | Vector | Exploitability | Impact |
|---|---|---|---|---|---|
| nvd@nist.gov | 8.8 | HIGH | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H | 2.8 | 5.9 |
CVSS 2.0
Severity: HIGH
Problem Type: CWE-77,CWE-78,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| redhat | enterprise_linux_eus | 8.1 |
| fedoraproject | fedora | 34 |
| redhat | enterprise_linux | 8.0 |
| redhat | enterprise_linux | 6.0 |
| redhat | enterprise_linux_eus | 8.2 |
| redhat | enterprise_linux_server_aus | 8.2 |
| redhat | virtualization_host | 4.0 |
| redhat | enterprise_linux_server_tus | 8.2 |
| sssd | sssd | 2.6.0 |
| redhat | enterprise_linux | 7.0 |
| redhat | enterprise_linux_server_aus | 8.4 |
| redhat | virtualization | 4.0 |
| redhat | enterprise_linux_server_tus | 8.4 |