Lucene search

K
githubexploitE9E7FE4B-B2BC-555E-B5F5-E0EAB3190A56
HistoryMar 31, 2024 - 2:09 p.m.

Exploit for Embedded Malicious Code in Tukaani Xz

2024-03-3114:09:28
132
ansible playbook
xz-utils vulnerability
cve-2024-3094
backdoor
ssh authentication
package_facts
debug module
package module
vulnerable systems
yaml files
default variables
safe version
execution flow

CVSS3

10

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

AI Score

9.8

Confidence

High

EPSS

0.144

Percentile

95.8%

Ansible Playbook for Patching xz-Utils Vulnerability (CVE-2024…

This is an article that belongs to githubexploit private collection.
Please sign in to get more Information.

CVSS3

10

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

AI Score

9.8

Confidence

High

EPSS

0.144

Percentile

95.8%