Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:35192
HistoryApr 21, 2022 - 11:05 a.m.

Privilege Escalation

2022-04-2111:05:51
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
15
privilege escalation
vulnerability
main function
incomplete fix
cve-2021-3101
jvm processor
unauthorized actions
software

EPSS

0.001

Percentile

17.8%

github.com/bottlerocket-os/hotdog is vulnerable to privilege escalation. The vulnerability exists in main function in main.go due to an incomplete fix for CVE-2021-3101, because the target JVM processor doesn’t limit the resources and filters which allows an attacker to gain access on host and perform unauthorized actions.

EPSS

0.001

Percentile

17.8%

Related for VERACODE:35192