Improper Privilege Management in crmsh - CVE-2020-35459

 

Improper Privilege Management in crmsh - CVE-2020-35459

Published: March 15, 2021


Vulnerability identifier: #VU51457
CSH Severity: Low
CVSS v4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2020-35459
CWE-ID: CWE-269
Exploitation vector: Local access
Exploit availability: No public exploit available
Vendor: ClusterLabs
Affected software:
crmsh

Detailed vulnerability description

The vulnerability allows a local user to escalate privileges.

The vulnerability exists due to improper privilege management. A local user can call "crm history" (when "crm" is run) and execute commands via shell code injection to the crm history commandline, potentially allowing escalation of privileges.


How to mitigate CVE-2020-35459

Install updates from vendor's website.

Sources