Lucene search
TalosCVELIST:CVE-2022-38060HistoryDec 21, 2022 - 12:00 a.m.
CVE-2022-38060
2022-12-2100:00:00
CWE-269
talos
www.cve.org
7
openstack
kolla
privilege escalation
sudo
misconfiguration
CVSS3
8.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
EPSS
0
Percentile
12.9%
A privilege escalation vulnerability exists in the sudo functionality of OpenStack Kolla git master 05194e7618. A misconfiguration in /etc/sudoers within a container can lead to increased privileges.
CNA Affected
[
{
"vendor": "OpenStack",
"product": "OpenStack",
"versions": [
{
"version": "git master 05194e7618",
"status": "affected"
}
]
}
]Related
nessus
nessus
prion
prion
Privilege escalation
2022-12-21 11:15:00
cve
cve
CVE-2022-38060
2022-12-21 11:15:09
redhat
redhat
redhatcve
redhatcve
CVE-2022-38060
2023-08-28 15:49:17
CVE-2023-3976
2024-02-21 15:02:30
talos
talos
OpenStack Kolla sudo privilege escalation vulnerability
2022-12-20 00:00:00
nvd
nvd
CVE-2022-38060
2022-12-21 11:15:09
CVSS3
8.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
EPSS
0
Percentile
12.9%
Related for CVELIST:CVE-2022-38060