Privilege escalation

2019-11-2518:15:00

PRIOn knowledge base

www.prio-n.com

7 High

AI Score

Confidence

Low

0.009 Low

EPSS

Percentile

82.4%

JSON

An privilege elevation vulnerability exists in Cloud-init before 0.7.0 when requests to an untrusted system are submitted for EC2 instance data.

CPENameOperatorVersion
cloud-initlt0.7.0
debian_linuxeq8.0
debian_linuxeq9.0
debian_linuxeq10.0
linux_enterprise_servereq11 sp2
linux_enterprise_servereq11 sp3

Name	Operator	Version
cloud-init	lt	0.7.0
debian_linux	eq	8.0
debian_linux	eq	9.0
debian_linux	eq	10.0
linux_enterprise_server	eq	11 sp2
linux_enterprise_server	eq	11 sp3

References

www.openwall.com/lists/oss-security/2014/03/06/7

access.redhat.com/security/cve/cve-2012-6639

bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-6639

bugzilla.suse.com/show_bug.cgi?id=CVE-2012-6639

security-tracker.debian.org/tracker/CVE-2012-6639

www.securityfocus.com/bid/66019/references