Lucene search
Veracode Vulnerability DatabaseVERACODE:46677HistoryApr 30, 2024 - 5:54 a.m.
Privilege Escalation
2024-04-3005:54:19
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
6
privilege escalation
suid bit
arbitrary binary execution
elevated privileges
calico cni
github.com/projectcalico/calico/ is vulnerable to Privilege Escalation. The vulnerability is due to an incorrect SUID bit configuration in the Calico CNI install binary, combined with the ability to control the input binary, allows an attacker to execute an arbitrary binary with elevated privileges.
| CPE | Name | Operator | Version |
|---|---|---|---|
| github.com/projectcalico/calico | le | v3.27.2 | |
| github.com/projectcalico/calico | le | v3.27.2 |
References
github.com/projectcalico/calico/commit/5cfda6d44ad97cf099e3dcb663e72f1d736d49aa
github.com/projectcalico/calico/commit/c88c5b096d2ca44cd31f7d3bbf3ac8fd12d18fac
github.com/projectcalico/calico/issues/7981
github.com/projectcalico/calico/pull/8447
github.com/projectcalico/calico/pull/8517
www.tigera.io/security-bulletins-tta-2024-001/
Related
cve
cve
CVE-2024-33522
2024-04-29 23:15:06
cvelist
cvelist
CVE-2024-33522 Privilege escalation in Calico CNI install binary
2024-04-29 22:19:06