Lucene search
RedhatCVELIST:CVE-2021-3621HistoryDec 23, 2021 - 12:00 a.m.
CVE-2021-3621
2021-12-2300:00:00
CWE-77
redhat
www.cve.org
A flaw was found in SSSD, where the sssctl command was vulnerable to shell command injection via the logs-fetch and cache-expire subcommands. This flaw allows an attacker to trick the root user into running a specially crafted sssctl command, such as via sudo, to gain root access. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.
CNA Affected
[
{
"vendor": "n/a",
"product": "sssd",
"versions": [
{
"version": "sssd 2.6.0",
"status": "affected"
}
]
}
]Related
nessus
nessus
RHEL 8 : sssd (RHSA-2021:3151)
2021-08-16 00:00:00
RHEL 7 : sssd (RHSA-2021:3336)
2021-09-01 00:00:00
EulerOS Virtualization 3.0.6.6 : sssd (EulerOS-SA-2022-1148)
2022-02-12 00:00:00
amazon
amazon
Important: sssd
2021-10-01 18:01:00
Important: sssd
2021-10-04 20:18:00
Important: sssd
2023-03-30 22:50:00
osv
osv
CVE-2021-3621
2021-12-23 21:15:08
sssd - security update
2021-09-15 00:00:00
Important: sssd security update
2021-08-16 08:00:18
openvas
openvas
CentOS: Security Advisory for libipa_hbac (CESA-2021:3336)
2021-09-02 00:00:00
Huawei EulerOS: Security Advisory for sssd (EulerOS-SA-2022-1148)
2022-02-13 00:00:00
Huawei EulerOS: Security Advisory for sssd (EulerOS-SA-2022-1097)
2022-02-13 00:00:00
redhat
redhat
(RHSA-2021:3365) Important: sssd security update
2021-08-31 08:20:44
(RHSA-2021:3151) Important: sssd security update
2021-08-16 08:00:18
(RHSA-2021:3178) Important: sssd security update
2021-08-17 07:53:32
nvd
nvd
CVE-2021-3621
2021-12-23 21:15:08
ubuntucve
ubuntucve
CVE-2021-3621
2021-08-16 00:00:00
redhatcve
redhatcve
CVE-2021-3621
2021-08-16 07:52:53
oraclelinux
oraclelinux
sssd security and bug fix update
2021-09-01 00:00:00
sssd security update
2021-08-17 00:00:00
debian
debian
[SECURITY] [DLA 2758-1] sssd security update
2021-09-15 20:32:36
[SECURITY] [DLA 3436-1] sssd security update
2023-05-29 13:43:53
rocky
rocky
sssd security update
2021-08-16 08:00:18
centos
centos
fedora
fedora
[SECURITY] Fedora 34 Update: sssd-2.5.2-2.fc34
2021-08-18 01:12:59
[SECURITY] Fedora 33 Update: sssd-2.5.1-2.fc33
2021-08-25 20:05:01
veracode
veracode
Command Injection
2021-08-22 21:51:58
prion
prion
Command injection
2021-12-23 21:15:00
cve
cve
CVE-2021-3621
2021-12-23 21:15:08
almalinux
almalinux
Important: sssd security update
2021-08-16 08:00:18
suse
suse
Security update for sssd (important)
2021-09-03 00:00:00
Security update for sssd (moderate)
2022-08-10 00:00:00
debiancve
debiancve
CVE-2021-3621
2021-12-23 21:15:08
mageia
mageia
Updated sssd packages fix security vulnerability
2021-11-11 01:53:34
ubuntu
ubuntu
SSSD vulnerabilities
2021-09-08 00:00:00