CVE-2021-22557

SLO generator allows for loading of YAML files that if crafted in a specific format can allow for code execution within the context of the SLO Generator. We recommend upgrading SLO Generator past https://github.com/google/slo-generator/pull/173

CVSS v3 5.3 MEDIUM
CVSS v2.0 6.8 MEDIUM

5.3^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 1.8 / Impact : 3.4

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact LOW

Integrity Impact LOW

Availability Impact LOW

Scope UNCHANGED

6.8^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:M/Au:N/C:P/I:P/A:P

Exploitability : 8.6 / Impact : 6.4

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://packetstormsecurity.com/files/164426/Google-SLO-Generator-2.0.0-Code-Execution.html	Exploit Third Party Advisory VDB Entry
https://github.com/google/slo-generator/pull/173	Exploit Patch Third Party Advisory
http://packetstormsecurity.com/files/164426/Google-SLO-Generator-2.0.0-Code-Execution.html	Exploit Third Party Advisory VDB Entry
https://github.com/google/slo-generator/pull/173	Exploit Patch Third Party Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:google:slo_generator:*:*:*:*:*:*:*:*

History

21 Nov 2024, 05:50

Type	Values Removed	Values Added
CVSS	v2 : ~~6.8~~ v3 : ~~7.8~~	v2 : 6.8 v3 : 5.3
References	~~() http://packetstormsecurity.com/files/164426/Google-SLO-Generator-2.0.0-Code-Execution.html - Exploit, Third Party Advisory, VDB Entry~~	() http://packetstormsecurity.com/files/164426/Google-SLO-Generator-2.0.0-Code-Execution.html - Exploit, Third Party Advisory, VDB Entry
References	~~() https://github.com/google/slo-generator/pull/173 - Exploit, Patch, Third Party Advisory~~	() https://github.com/google/slo-generator/pull/173 - Exploit, Patch, Third Party Advisory

Information

Published : 2021-10-04 10:15

Updated : 2024-11-21 05:50

NVD link : CVE-2021-22557

Mitre link : CVE-2021-22557

CVE.ORG link : CVE-2021-22557

JSON object : View

Products Affected

google

slo_generator

CWE

CWE-94

Improper Control of Generation of Code ('Code Injection')

CWE-78

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

{"id": "CVE-2021-22557", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 6.8, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}], "cvssMetricV31": [{"type": "Secondary", "source": "cve-coordination@google.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.3, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "LOW", "privilegesRequired": "LOW", "confidentialityImpact": "LOW"}, "impactScore": 3.4, "exploitabilityScore": 1.8}, {"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.8, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 1.8}]}, "published": "2021-10-04T10:15:07.197", "references": [{"url": "http://packetstormsecurity.com/files/164426/Google-SLO-Generator-2.0.0-Code-Execution.html", "tags": ["Exploit", "Third Party Advisory", "VDB Entry"], "source": "cve-coordination@google.com"}, {"url": "https://github.com/google/slo-generator/pull/173", "tags": ["Exploit", "Patch", "Third Party Advisory"], "source": "cve-coordination@google.com"}, {"url": "http://packetstormsecurity.com/files/164426/Google-SLO-Generator-2.0.0-Code-Execution.html", "tags": ["Exploit", "Third Party Advisory", "VDB Entry"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://github.com/google/slo-generator/pull/173", "tags": ["Exploit", "Patch", "Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Secondary", "source": "cve-coordination@google.com", "description": [{"lang": "en", "value": "CWE-94"}]}, {"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-78"}]}], "descriptions": [{"lang": "en", "value": "SLO generator allows for loading of YAML files that if crafted in a specific format can allow for code execution within the context of the SLO Generator. We recommend upgrading SLO Generator past https://github.com/google/slo-generator/pull/173"}, {"lang": "es", "value": "SLO generator permite cargar archivos YAML que, si se dise\u00f1an en un formato espec\u00edfico, pueden permitir una ejecuci\u00f3n de c\u00f3digo en el contexto del generador SLO. Recomendamos actualizar el Generador SLO m\u00e1s all\u00e1 de https://github.com/google/slo-generator/pull/173"}], "lastModified": "2024-11-21T05:50:19.670", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:google:slo_generator:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4D1AF2F6-5C6A-40D1-8ED9-4AD4196BD312", "versionEndExcluding": "2.0.1"}], "operator": "OR"}]}], "sourceIdentifier": "cve-coordination@google.com"}