Lucene search
HistoryOct 29, 2023 - 8:15 a.m.
CVE-2021-33636
vulnerability
isula load
arbitrary code execution
security
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
9.5 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
28.7%
When the isula load command is used to load malicious images, attackers can execute arbitrary code.
Affected configurations
Node
openeulerisulaMatch2.0.8-20210518.144540
ORopeneulerisulaMatch2.0.18-10
ORopeneulerisulaMatch2.1.2
Related
cve
cve
CVE-2021-33636
2023-10-29 08:15:20
prion
prion
Code injection
2023-10-29 08:15:00
cvelist
cvelist
CVE-2021-33636 Load malicious images may cause process to be hijacked
2023-10-29 07:58:05
openvas
openvas
Huawei EulerOS: Security Advisory for iSulad (EulerOS-SA-2023-3303)
2023-12-12 00:00:00
Huawei EulerOS: Security Advisory for iSulad (EulerOS-SA-2023-3335)
2023-12-12 00:00:00
Huawei EulerOS: Security Advisory for iSulad (EulerOS-SA-2023-3274)
2023-12-12 00:00:00
nessus
nessus
EulerOS 2.0 SP9 : iSulad (EulerOS-SA-2023-3335)
2024-01-16 00:00:00
EulerOS 2.0 SP9 : iSulad (EulerOS-SA-2023-3303)
2024-01-16 00:00:00
EulerOS 2.0 SP11 : iSulad (EulerOS-SA-2023-3246)
2024-01-16 00:00:00
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
9.5 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
28.7%
Related for NVD:CVE-2021-33636