Amanda 3.5.1 allows privilege escalation from the regular user backup to root. The SUID binary located at /lib/amanda/rundump will execute /usr/sbin/dump as root with controlled arguments from the attacker which may lead to escalation of privileges, denial of service, and information disclosure.
References
Configurations
History
07 Nov 2023, 03:49
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
06 Jun 2023, 18:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
30 May 2023, 12:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
Information
Published : 2023-04-16 01:15
Updated : 2024-02-28 20:13
NVD link : CVE-2022-37704
Mitre link : CVE-2022-37704
CVE.ORG link : CVE-2022-37704
JSON object : View
Products Affected
zmanda
- amanda
CWE
CWE-77
Improper Neutralization of Special Elements used in a Command ('Command Injection')