Lucene search

[email protected]CVE-2021-29005

HistoryOct 11, 2021 - 1:15 p.m.

CVE-2021-29005

2021-10-1113:15:07

CWE-276

[email protected]

web.nvd.nist.gov

cve-2021-29005

insecure permission

chmod command

rconfig server

nvd

security

vulnerability

root access

9 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:C/I:C/A:C

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

9.1 High

AI Score

Confidence

High

0.032 Low

EPSS

Percentile

91.2%

JSON

Insecure permission of chmod command on rConfig server 3.9.6 exists. After installing rConfig apache user may execute chmod as root without password which may let an attacker with low privilege to gain root access on server.

Affected configurations

NVD

Node

rconfigrconfigMatch3.9.6

CPENameOperatorVersion
rconfig:rconfigrconfigeq3.9.6

CPE	Name	Operator	Version
rconfig:rconfig	rconfig	eq	3.9.6

References

rconfig.com

github.com/mrojz/rconfig-exploit/blob/main/CVE-2021-29005-POC.sh

9 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:C/I:C/A:C

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

9.1 High

AI Score

Confidence

High

0.032 Low

EPSS

Percentile

91.2%

JSON

Related for CVE-2021-29005

prion1 cvelist1 nvd1 openvas1