Lucene search

K

[email protected]CVE-2021-42762

HistoryOct 20, 2021 - 7:15 p.m.

CVE-2021-42762

2021-10-2019:15:07

[email protected]

web.nvd.nist.gov

126

cve-2021-42762

webkitgtk

wpe webkit

sandbox bypass

vfs syscalls

unix sockets

cve-2021-41133

security vulnerability

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

CVSS3

5.3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

LOW

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

AI Score

6.4

Confidence

High

EPSS

0.001

Percentile

20.5%

BubblewrapLauncher.cpp in WebKitGTK and WPE WebKit before 2.34.1 allows a limited sandbox bypass that allows a sandboxed process to trick host processes into thinking the sandboxed process is not confined by the sandbox, by abusing VFS syscalls that manipulate its filesystem namespace. The impact is limited to host services that create UNIX sockets that WebKit mounts inside its sandbox, and the sandboxed process remains otherwise confined. NOTE: this is similar to CVE-2021-41133.

Affected configurations

NVD

Node

webkitgtkwebkitgtkRange<2.34.1

OR

wpewebkitwpe_webkitRange<2.34.1

Node

fedoraprojectfedoraMatch33

OR

fedoraprojectfedoraMatch34

OR

fedoraprojectfedoraMatch35

Node

debiandebian_linuxMatch10.0

OR

debiandebian_linuxMatch11.0

References

www.openwall.com/lists/oss-security/2021/10/26/9

www.openwall.com/lists/oss-security/2021/10/27/1

www.openwall.com/lists/oss-security/2021/10/27/2

www.openwall.com/lists/oss-security/2021/10/27/4

bugs.webkit.org/show_bug.cgi?id=231479

github.com/flatpak/flatpak/security/advisories/GHSA-67h7-w3jq-vh4q

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/H6MGXCX7P5AHWOQ6IRT477UKT7IS4DAD/

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/M5J2LZQTDX53DNSKSGU7TQYCO2HKSTY4/

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ON5SDVVPVPCAGFPW2GHYATZVZYLPW2L4/

www.debian.org/security/2021/dsa-4995

www.debian.org/security/2021/dsa-4996

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

CVSS3

5.3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

LOW

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

AI Score

6.4

Confidence

High

EPSS

0.001

Percentile

20.5%

Related for CVE-2021-42762