sshd in OpenSSH 6.2 through 8.x before 8.8, when certain non-default configurations are used, allows privilege escalation because supplemental groups are not initialized as expected. Helper programs for AuthorizedKeysCommand and AuthorizedPrincipalsCommand may run with privileges associated with group memberships of the sshd process, if the configuration specifies running the command as a different user.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
Configuration 4 (hide)
AND |
|
Configuration 5 (hide)
AND |
|
Configuration 6 (hide)
|
Configuration 7 (hide)
|
History
26 Dec 2023, 04:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
22 Dec 2023, 13:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
07 Nov 2023, 03:38
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Information
Published : 2021-09-26 19:15
Updated : 2024-02-28 18:48
NVD link : CVE-2021-41617
Mitre link : CVE-2021-41617
CVE.ORG link : CVE-2021-41617
JSON object : View
Products Affected
openbsd
- openssh
netapp
- active_iq_unified_manager
- hci_management_node
- aff_500f
- aff_500f_firmware
- aff_a250
- aff_a250_firmware
- ontap_select_deploy_administration_utility
- solidfire
- clustered_data_ontap
oracle
- http_server
- zfs_storage_appliance_kit
starwindsoftware
- starwind_virtual_san
fedoraproject
- fedora
CWE