CVE-2022-37704

CVSS v3.1

6.7

Medium

Vector

AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Amanda version 3.5.1

Description The issue allows privilege escalation from a regular user backup to root. A SUID binary located at /lib/amanda/rundump executes /usr/sbin/dump as root with controlled arguments from the attacker, which may lead to escalation of privileges, denial of service, and information disclosure.

Recommendations For Amanda version 3.5.1, consider restricting access to the SUID binary located at /lib/amanda/rundump to minimize the risk of exploitation. As a temporary workaround, consider disabling the execution of /usr/sbin/dump by the SUID binary until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

DoS

Command Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-77

Related Identifiers

CVE-2022-37704

DLA-3330-1

DLA-3880-1

OESA-2023-1149

OPENSUSE-SU-2023:0069-1

OPENSUSE-SU-2024:12808-1

USN-5966-1

USN-5966-2

USN-5966-3

Affected Products

Amanda

Linuxmint

Ubuntu

CVE-2022-37704

Weakness Enumeration

Related Identifiers

Affected Products

References · 47