SUSE update for ignition



Risk Low
Patch available YES
Number of vulnerabilities 1
CVE-ID CVE-2022-1706
CWE-ID CWE-284
Exploitation vector Local network
Public exploit N/A
Vulnerable software
 SUSE Linux Enterprise Micro
Operating systems & Components / Operating system

ignition-dracut-grub2
Operating systems & Components / Operating system package or component

ignition-debuginfo
Operating systems & Components / Operating system package or component

ignition
Operating systems & Components / Operating system package or component

Vendor SUSE

Security Bulletin

This security bulletin contains one low risk vulnerability.

1) Improper access control

EUVDB-ID: #VU63493

Risk: Low

CVSSv4.0: 3.5 [CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:A/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-1706

CWE-ID: CWE-284 - Improper Access Control

Exploit availability: No

Description

The vulnerability allows a remote attacker to gain unauthorized access to otherwise restricted functionality.

The vulnerability exists due to improper access restrictions in ignition configs. A remote user on the local network can bypass implemented security restrictions and obtain sensitive information.

Mitigation

Update the affected package ignition to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Micro: 5.1

ignition-dracut-grub2: before 2.14.0-150300.4.7.1

ignition-debuginfo: before 2.14.0-150300.4.7.1

ignition: before 2.14.0-150300.4.7.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2022/suse-su-20222350-1/


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the local network (LAN).

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.



###SIDEBAR###