PT-2019-6816 · Canonical+1 · Cloud-Init+1

Florian Weimer

+1

·

Published

2015-05-29

·

Updated

2020-08-18

·

CVE-2012-6639

CVSS v2.0

9.0

High

VectorAV:N/AC:L/Au:S/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions Cloud-init versions prior to 0.7.0
Description A privilege elevation issue exists when requests to an untrusted system are submitted for EC2 instance data.
Recommendations For versions prior to 0.7.0, update to version 0.7.0 or later to resolve the issue.

Fix

Improper Privilege Management

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-269

Related Identifiers

ALT-PU-2015-1473
CVE-2012-6639

Affected Products

Alt Linux
Cloud-Init