Improper Preservation of Permissions in VirtualBMC - CVE-2022-44020
Published: December 13, 2022 / Updated: March 10, 2023
Vulnerability identifier: #VU70141
CSH Severity: Low
CVSS v4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2022-44020
CWE-ID: CWE-281
Exploitation vector: Local access
Exploit availability:
No public exploit available
Vendor: Openstack
Affected software:
VirtualBMC
VirtualBMC
Detailed vulnerability description
The vulnerability allows a local user to gain access to sensitive information.
The vulnerability exists due to an error caused by changing boot device configuration, which removes password protection from the managed libvirt XML domain. A local user can gain unauthorized access to sensitive information.
How to mitigate CVE-2022-44020
Install update from vendor's website.
Sources
- https://storyboard.openstack.org/#!/story/2010382
- https://review.opendev.org/c/openstack/virtualbmc/+/862620
- https://review.opendev.org/c/openstack/sushy-tools/+/862625
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GAD7QJIUWPCKJIGYP7PPHH5DILOEONFE/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QMSUGS4B6EBRHBJMTRXL5RIKJTZTEMJC/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KEQVJF3OQGSDCSQTQQSC54JEGLMSNB4Q/
- https://bugzilla.redhat.com/show_bug.cgi?id=2142678