A vulnerability was found in the device-mapper-multipath. The device-mapper-multipath allows local users to obtain root access, exploited alone or in conjunction with CVE-2022-41973. Local users that are able to write to UNIX domain sockets can bypass access controls and manipulate the multipath setup. This issue occurs because an attacker can repeat a keyword, which is mishandled when arithmetic ADD is used instead of bitwise OR. This could lead to local privilege escalation to root.

CPENameOperatorVersion
enterprise_linuxeq9.1
enterprise_linuxeq8.7

CPE	Name	Operator	Version
	enterprise_linux	eq	9.1
	enterprise_linux	eq	8.7

References

bugzilla.redhat.com/show_bug.cgi?id=2138959

nessus 64

cve 3

veracode 2

redhatcve 3

oraclelinux 4

redhat 14

osv 11

almalinux 4

cbl_mariner 2

rocky 2

prion 2

suse 2

openvas 28

debian 2

gentoo 1

photon 4

f5 2

packetstorm 2

alpinelinux 2

rosalinux 1

ubuntucve 2

ubuntu 1

mageia 1

fedora 1

debiancve 2

qualysblog 4

hivepro 1

amazon 1

cloudfoundry 1

thn 1

zdt 1

nessus

Rocky Linux 9 : device-mapper-multipath (RLSA-2022:8453)

2023-11-06 00:00:00

Rocky Linux 8 : device-mapper-multipath (RLSA-2022:7928)

2023-01-30 00:00:00

Amazon Linux 2023 : device-mapper-multipath, device-mapper-multipath-devel, device-mapper-multipath-libs (ALAS2023-2023-126)

2023-03-21 00:00:00

cve

CVE-2022-3787

2023-03-29 21:15:07

CVE-2022-41973

2022-10-29 18:15:00

CVE-2022-41974

2022-10-29 19:15:00

veracode

Privilege Escalation

2023-01-18 00:45:31

Privilege Escalation

2022-11-19 14:27:14

redhatcve

CVE-2022-3787

2022-11-07 21:56:14

CVE-2022-41974

2022-10-24 20:18:58

CVE-2022-41973

2022-10-24 20:18:50

oraclelinux

device-mapper-multipath security update

2022-11-24 00:00:00

device-mapper-multipath security and bug fix update

2023-05-15 00:00:00

device-mapper-multipath security and bug fix update

2023-05-24 00:00:00

redhat

(RHSA-2023:2948) Moderate: device-mapper-multipath security and bug fix update

2023-05-16 05:58:58

(RHSA-2023:2459) Moderate: device-mapper-multipath security and bug fix update

2023-05-09 05:11:25

(RHSA-2024:1110) Moderate: device-mapper-multipath security update

2024-03-05 10:45:01

osv

Moderate: device-mapper-multipath security and bug fix update

2023-05-16 00:00:00

Moderate: device-mapper-multipath security and bug fix update

2023-05-09 00:00:00

Important: device-mapper-multipath security update

2022-11-15 15:35:59

almalinux

Moderate: device-mapper-multipath security and bug fix update

2023-05-16 00:00:00

Moderate: device-mapper-multipath security and bug fix update

2023-05-09 00:00:00

Important: device-mapper-multipath security update

2022-11-15 00:00:00

cbl_mariner

CVE-2022-41973 affecting package device-mapper-multipath 0.8.6-1

2024-04-26 21:08:17

CVE-2022-41973 affecting package device-mapper-multipath 0.8.6-3

2023-01-17 16:46:46

rocky

device-mapper-multipath security update

2022-11-15 15:35:59

device-mapper-multipath security update

2022-11-14 08:45:46

prion

Privilege escalation

2022-10-29 19:15:00

Privilege escalation

2022-10-29 18:15:00

suse

Security update for multipath-tools (important)

2022-10-24 00:00:00

Security update for multipath-tools (important)

2022-10-24 00:00:00

openvas

Huawei EulerOS: Security Advisory for device-mapper-multipath (EulerOS-SA-2023-1310)

2023-02-09 00:00:00

Huawei EulerOS: Security Advisory for multipath-tools (EulerOS-SA-2023-1413)

2023-03-07 00:00:00

Huawei EulerOS: Security Advisory for multipath-tools (EulerOS-SA-2023-2046)

2023-06-07 00:00:00

debian

[SECURITY] [DSA 5366-1] multipath-tools security update

2023-03-01 11:29:12

[SECURITY] [DLA 3250-1] multipath-tools security update

2022-12-29 10:45:35

gentoo

multipath-tools: Multiple Vulnerabilities

2023-11-25 00:00:00

photon

Important Photon OS Security Update - PHSA-2022-0269

2022-10-24 00:00:00

Important Photon OS Security Update - PHSA-2022-4.0-0269

2022-10-24 00:00:00

Important Photon OS Security Update - PHSA-2022-3.0-0476

2022-10-24 00:00:00

K000133058 : device-mapper-multipath vulnerability CVE-2022-41973

2023-03-18 00:00:00

K000133615 : device-mapper-multipath vulnerability CVE-2022-41974

2023-04-28 00:00:00

packetstorm

Leeloo Multipath Authorization Bypass / Symlink Attack

2022-10-31 00:00:00

snap-confine must_mkdir_and_open_with_perms() Race Condition

2022-12-09 00:00:00

alpinelinux

CVE-2022-41973

2022-10-29 18:15:00

CVE-2022-41974

2022-10-29 19:15:00

rosalinux

Advisory ROSA-SA-2023-2218

2023-08-22 08:47:43

ubuntucve

CVE-2022-41974

2022-10-24 00:00:00

CVE-2022-41973

2022-10-24 00:00:00

ubuntu

multipath-tools vulnerabilities

2022-11-17 00:00:00

mageia

Updated multipath-tools packages fix security vulnerabilities

2024-03-18 19:12:23

fedora

[SECURITY] Fedora 36 Update: device-mapper-multipath-0.8.7-9.fc36

2022-11-10 16:19:06

debiancve

CVE-2022-41973

2022-10-29 18:15:00

CVE-2022-41974

2022-10-29 19:15:00

qualysblog

Leeloo Multipath: Authorization bypass and symlink attack in multipathd (CVE-2022-41974 and CVE-2022-41973)

2022-10-26 01:57:00

Snapd Race Condition Vulnerability in snap-confine’s must_mkdir_and_open_with_perms() (CVE-2022-3328)

2022-11-30 23:29:05

Qualys Research Team: Threat Thursdays, October 2022

2022-10-28 00:58:53

hivepro

Linux flaws could be chained together to achieve root access

2022-12-09 05:58:41

amazon

Important: device-mapper-multipath

2022-12-01 20:31:00

cloudfoundry

USN-5731-1: multipath-tools vulnerabilities | Cloud Foundry

2022-12-07 00:00:00

thn

Critical Ping Vulnerability Allows Remote Attackers to Take Over FreeBSD Systems

2022-12-05 07:40:00

zdt

Ubuntu Server snap-confine must_mkdir_and_open_with_perms() Race Condition Vulnerability

2022-12-10 00:00:00

Products

Security Intelligence
Non-intrusive assessment
Developers SDK
Windows scanner
Linux scanner
Perimeter control tool
MSSP

Database

Vulnerabilities
Exploits
IOC
Security News
BugBounty
Popular
Wild Exploited
Top Vulnerabilities

Tools

Linux Security Scanner
API integration
Subscriptions
Plugins
Manual Audit

Learn More

Stats
API
Docs
Api-keys
License
Pricing
Glossary
FAQ

Company

Blog
Contacts
About Us
OpenSource
EULA
Brand Guideline
Privacy Policy

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply. All product names, logos, and brands are property of their respective owners. All company, product and service names used in this website are for identification purposes only. Use of these names, logos, and brands does not imply endorsement.If you are an owner of some content and want it to be removed, please contact us. Using Vulners services you are accepting Vulners services end-user license agreement

@2024 Vulners Inc

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.7 High

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:S/C:P/I:P/A:P

0.0004 Low

EPSS

Percentile

5.4%

JSON

Related for PRION:CVE-2022-3787