Lucene search

MirantisCVELIST:CVE-2021-44458

HistoryJan 10, 2022 - 3:05 p.m.

CVE-2021-44458 Lack of websocket authentication in Lens causes remote code execution when visiting a malicious website

2022-01-1015:05:44

CWE-287

Mirantis

www.cve.org

8.3 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H

9.5 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

59.5%

JSON

Linux users running Lens 5.2.6 and earlier could be compromised by visiting a malicious website. The malicious website could make websocket connections from the victim’s browser to Lens and so operate the local terminal feature. This would allow the attacker to execute arbitrary commands as the Lens user.

CNA Affected

[
  {
    "platforms": [
      "Linux"
    ],
    "product": "Lens",
    "vendor": "Mirantis",
    "versions": [
      {
        "lessThanOrEqual": "5.2.6",
        "status": "affected",
        "version": "5.2",
        "versionType": "custom"
      }
    ]
  }
]

References

github.com/Mirantis/security/blob/main/advisories/0001.md

8.3 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H

9.5 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

59.5%

JSON

Related for CVELIST:CVE-2021-44458