logo
DATABASE RESOURCES PRICING ABOUT US

Access Control Bypass

Description

keepalived is vulberable to access control bypass. The vulnerability exists due to the lack of sanitization of the message destination, allowing any user to inspect and manipulate any property.


Affected Software


CPE Name Name Version
keepalived:sid 1:2.1.5-0.2
keepalived:hirsute 1:2.1.5-0.2build2
keepalived:devel 1:2.0.19-2.1
keepalived:devel 1:2.1.5-0.2
keepalived:devel 1:2.1.5-0.2build2
keepalived:bionic 1:1.3.9-1ubuntu0.18.04.2
keepalived:bionic 1:1.3.9-1build1
keepalived:edge 2.0.20-r0
keepalived:edge 2.2.1-r0
keepalived:edge 2.2.2-r0
keepalived:edge 2.2.4-r1
keepalived:edge 2.2.4-r0
keepalived:edge 2.2.4-r2
keepalived 1.3.5__16.el7
keepalived 1.2.7__3.el6
keepalived 1.3.5__8.el7_6
keepalived 2.0.10__4.el8_0.2
keepalived 1.3.5__19.el7
keepalived 1.3.5__8.el7_6.5
keepalived 2.0.10__11.el8_3.1
keepalived 2.0.10__1.el8
keepalived 1.2.13__5.el6_6
keepalived 2.0.10__10.el8
keepalived 2.0.10__4.el8_0.1
keepalived 2.0.10__11.el8
keepalived 2.1.5__6.el8
keepalived 1.3.5__6.el7
keepalived 1.2.13__4.el6
keepalived:sid 1:2.1.5-0.2
keepalived:hirsute 1:2.1.5-0.2build2
keepalived:devel 1:2.0.19-2.1
keepalived:devel 1:2.1.5-0.2
keepalived:devel 1:2.1.5-0.2build2
keepalived:bionic 1:1.3.9-1ubuntu0.18.04.2
keepalived:bionic 1:1.3.9-1build1
keepalived:edge 2.0.20-r0
keepalived:edge 2.2.1-r0
keepalived:edge 2.2.2-r0
keepalived:edge 2.2.4-r1
keepalived:edge 2.2.4-r0
keepalived:edge 2.2.4-r2
keepalived 1.3.5__16.el7
keepalived 1.2.7__3.el6
keepalived 1.3.5__8.el7_6
keepalived 2.0.10__4.el8_0.2
keepalived 1.3.5__19.el7
keepalived 1.3.5__8.el7_6.5
keepalived 2.0.10__11.el8_3.1
keepalived 2.0.10__1.el8
keepalived 1.2.13__5.el6_6
keepalived 2.0.10__10.el8
keepalived 2.0.10__4.el8_0.1
keepalived 2.0.10__11.el8
keepalived 2.1.5__6.el8
keepalived 1.3.5__6.el7
keepalived 1.2.13__4.el6

Related