CVE-2020-35459 — OS Command Injection in Crmsh

CWE-78 — OS Command Injection CWE-269 — Improper Privilege Management6 documents5 sources

Severity

7.8HIGHNVD

EPSS

0.0%

top 86.23%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Clusterlabs Crmsh Debian Crmsh Debian Linux

Timeline

PublishedJan 12

Latest updateMar 25

Description

An issue was discovered in ClusterLabs crmsh through 4.2.1. Local attackers able to call "crm history" (when "crm" is run) were able to execute commands via shell code injection to the crm history commandline, potentially allowing escalation of privileges.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages4 packages

▶Debianclusterlabs/crmsh< 4.2.1-2+3

▶NVDclusterlabs/crmsh4.2.1

▶PyPIclusterlabs/crmsh4.2.1

▶debiandebian/crmsh< crmsh 4.2.1-2 (bookworm)

Also affects: Debian Linux 9.0

Patches

Patch: www.openwall.com ↗Patch: github.com ↗Patch: www.openwall.com ↗

🔴Vulnerability Details

OSV

ClusterLabs crmsh vulnerable to shell code injection↗2022-05-24

▶

GHSA

ClusterLabs crmsh vulnerable to shell code injection↗2022-05-24

▶

OSV

CVE-2020-35459: An issue was discovered in ClusterLabs crmsh through 4↗2021-01-12

▶

📋Vendor Advisories

Ubuntu

CRM shell vulnerability↗2024-03-25

▶

Debian

CVE-2020-35459: crmsh - An issue was discovered in ClusterLabs crmsh through 4.2.1. Local attackers able...↗2020

▶