Lucene search

Critical vulnerability found in cron-utils

🗓️ 15 Nov 2021 23:11:27Reported by GitHub Advisory DatabaseType

Critical vulnerability in cron-utils, enabling unauthenticated Remote Code Execution (RCE) via Template Injectio

Reporter	Title	Published	Views	Family All 13
Veracode	Template Injection	16 Nov 202103:47	–	veracode
NVD	CVE-2021-41269	15 Nov 202121:15	–	nvd
RedhatCVE	CVE-2021-41269	18 Nov 202115:03	–	redhatcve
CNVD	Cron Utils Code Injection Vulnerability	17 Nov 202100:00	–	cnvd
Prion	Remote code execution	15 Nov 202121:15	–	prion
CVE	CVE-2021-41269	15 Nov 202121:15	–	cve
OSV	Critical vulnerability found in cron-utils	15 Nov 202123:27	–	osv
OSV	CVE-2021-41269	15 Nov 202121:15	–	osv
Cvelist	CVE-2021-41269 Unauthenticated remote code injection in cron-utils	15 Nov 202120:30	–	cvelist
RedHat Linux	(RHSA-2022:0589) Moderate: Red Hat build of Quarkus 2.2.5 release and security update	21 Feb 202218:18	–	redhat

Source	Link
github	www.github.com/jmrozanec/cron-utils/security/advisories/GHSA-p9m8-27x8-rg87
github	www.github.com/jmrozanec/cron-utils/issues/461
github	www.github.com/jmrozanec/cron-utils/commit/cfd2880f80e62ea74b92fa83474c2aabdb9899da
github	www.github.com/jmrozanec/cron-utils/commit/d6707503ec2f20947f79e38f861dba93b39df9da
nvd	www.nvd.nist.gov/vuln/detail/CVE-2021-41269
github	www.github.com/advisories/GHSA-p9m8-27x8-rg87

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

15 Nov 2021 23:27Current

2.7Low risk

Vulners AI Score2.7

CVSS26.8

CVSS39.8 - 10

EPSS0.07109

CWE-94