Improper Preservation of Permissions in VirtualBMC - CVE-2022-44020
Published: December 13, 2022 / Updated: March 10, 2023
Vulnerability identifier: #VU70141
CSH Severity: Low
CVSSv4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2022-44020
CWE-ID: CWE-281
Exploitation vector: Local access
Exploit availability:
No public exploit available
Vulnerable software:
VirtualBMC
VirtualBMC
Software vendor:
Openstack
Openstack
Description
The vulnerability allows a local user to gain access to sensitive information.
The vulnerability exists due to an error caused by changing boot device configuration, which removes password protection from the managed libvirt XML domain. A local user can gain unauthorized access to sensitive information.
Remediation
Install update from vendor's website.
External links
- https://storyboard.openstack.org/#!/story/2010382
- https://review.opendev.org/c/openstack/virtualbmc/+/862620
- https://review.opendev.org/c/openstack/sushy-tools/+/862625
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GAD7QJIUWPCKJIGYP7PPHH5DILOEONFE/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QMSUGS4B6EBRHBJMTRXL5RIKJTZTEMJC/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KEQVJF3OQGSDCSQTQQSC54JEGLMSNB4Q/
- https://bugzilla.redhat.com/show_bug.cgi?id=2142678