PT-2020-6172 · Clusterlabs+3 · Crmsh+3
Vincent Berg
·
Published
2020-12-14
·
Updated
2024-06-15
·
CVE-2020-35459
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
ClusterLabs crmsh versions 4.2.1 and earlier
Description
The issue allows local attackers to execute commands via shell code injection to the
crm history command line, potentially allowing escalation of privileges. This is related to a lack of privilege management mechanism in the cluster management shell. Exploitation of the issue could allow an attacker to access confidential data, compromise its integrity, and cause a denial of service.Recommendations
For versions 4.2.1 and earlier, as a temporary workaround, consider restricting access to the
crm history command until a patch is available. Avoid using the crm history command with untrusted input to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.Exploit
Improper Privilege Management
OS Command Injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Linuxmint
Suse
Ubuntu
Crmsh