CVE-2022-29799
published 2022-09-21CVE-2022-29799: A vulnerability was found in networkd-dispatcher. This flaw exists because no functions are sanitized by the OperationalState or the AdministrativeState of…
PriorityP336medium5.5CVSS 3.1
AVLACLPRLUINSUCHINAN
EPSS
11.67%
95.5th percentile
A vulnerability was found in networkd-dispatcher. This flaw exists because no functions are sanitized by the OperationalState or the AdministrativeState of networkd-dispatcher. This attack leads to a directory traversal to escape from the “/etc/networkd-dispatcher” base directory.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | networkd-dispatcher | < networkd-dispatcher 2.2.3-1 (bookworm) | networkd-dispatcher 2.2.3-1 (bookworm) |
CVSS provenance
nvdv3.15.5MEDIUMCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
osv5.5MEDIUM
vendor_debian5.5LOW
vendor_redhat5.5MEDIUM
vendor_ubuntu5.5MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
networkd-dispatcher regression
vendor_ubuntu·2022-05-04·CVSS 5.5
[MEDIUM] networkd-dispatcher regression
Title: networkd-dispatcher regression
Summary: USN-5395-1 introduced a regression in networkd-dispatcher.
USN-5395-1 fixed vulnerabilities in networkd-dispatcher. Unfortunately
that update was incomplete and could introduce a regression. This update
fixes the problem.
We apologize for the inconvenience.
Original advisory details:
It was discovered that networkd-dispatcher incorrectly handled internal
scripts. A local attacker could possibly use this issue to cause a race
condition, escalate privileges and execute arbitrary code.
(CVE-2022-29799, CVE-2022-29800)
Instructions: In general, a standard system update will make all the necessary changes.
Ubuntu
networkd-dispatcher vulnerabilities
vendor_ubuntu·2022-04-28·CVSS 5.5
CVE-2022-29799 [MEDIUM] networkd-dispatcher vulnerabilities
Title: networkd-dispatcher vulnerabilities
Summary: Several security issues were fixed in networkd-dispatcher.
It was discovered that networkd-dispatcher incorrectly handled internal
scripts. A local attacker could possibly use this issue to cause a race
condition, escalate privileges and execute arbitrary code.
(CVE-2022-29799, CVE-2022-29800)
Instructions: In general, a standard system update will make all the necessary changes.
Red Hat
networkd-dispatcher: Directory traversal
vendor_redhat·2022-04-27·CVSS 5.5
CVE-2022-29799 [MEDIUM] CWE-22 networkd-dispatcher: Directory traversal
networkd-dispatcher: Directory traversal
A vulnerability was found in networkd-dispatcher. This flaw exists because no functions are sanitized by the OperationalState or the AdministrativeState of networkd-dispatcher. This attack leads to a directory traversal to escape from the “/etc/networkd-dispatcher” base directory.
A vulnerability was found in networkd-dispatcher. This flaw exists because no functions are sanitized by the OperationalState or the AdministrativeState of networkd-dispatcher and lead to the directory traversal escaping from the “/etc/networkd-dispatcher” base directory.
Statement: This issue does not affect Red Hat Enterprise Linux 6, 7, 8, and 9 as the networkd-dispatcher package is currently not provided in any of our supported products.
Package: networkd-dispatche
Debian
CVE-2022-29799: networkd-dispatcher - A vulnerability was found in networkd-dispatcher. This flaw exists because no fu...
vendor_debian·2022·CVSS 5.5
CVE-2022-29799 [MEDIUM] CVE-2022-29799: networkd-dispatcher - A vulnerability was found in networkd-dispatcher. This flaw exists because no fu...
A vulnerability was found in networkd-dispatcher. This flaw exists because no functions are sanitized by the OperationalState or the AdministrativeState of networkd-dispatcher. This attack leads to a directory traversal to escape from the “/etc/networkd-dispatcher” base directory.
Scope: local
bookworm: resolved (fixed in 2.2.3-1)
bullseye: open
forky: resolved (fixed in 2.2.3-1)
sid: resolved (fixed in 2.2.3-1)
trixie: resolved (fixed in 2.2.3-1)
GHSA
GHSA-637r-47cq-j74p: A vulnerability was found in networkd-dispatcher
ghsa_unreviewed·2022-09-22
CVE-2022-29799 [MEDIUM] CWE-22 GHSA-637r-47cq-j74p: A vulnerability was found in networkd-dispatcher
A vulnerability was found in networkd-dispatcher. This flaw exists because no functions are sanitized by the OperationalState or the AdministrativeState of networkd-dispatcher. This attack leads to a directory traversal to escape from the “/etc/networkd-dispatcher” base directory.
OSV
CVE-2022-29799: A vulnerability was found in networkd-dispatcher
osv·2022-09-21·CVSS 5.5
CVE-2022-29799 [MEDIUM] CVE-2022-29799: A vulnerability was found in networkd-dispatcher
A vulnerability was found in networkd-dispatcher. This flaw exists because no functions are sanitized by the OperationalState or the AdministrativeState of networkd-dispatcher. This attack leads to a directory traversal to escape from the “/etc/networkd-dispatcher” base directory.
OSV
networkd-dispatcher regression
osv·2022-05-04·CVSS 5.5
CVE-2022-29799 [MEDIUM] networkd-dispatcher regression
networkd-dispatcher regression
USN-5395-1 fixed vulnerabilities in networkd-dispatcher. Unfortunately
that update was incomplete and could introduce a regression. This update
fixes the problem.
We apologize for the inconvenience.
Original advisory details:
It was discovered that networkd-dispatcher incorrectly handled internal
scripts. A local attacker could possibly use this issue to cause a race
condition, escalate privileges and execute arbitrary code.
(CVE-2022-29799, CVE-2022-29800)
OSV
networkd-dispatcher vulnerabilities
osv·2022-04-28·CVSS 5.5
CVE-2022-29799 [MEDIUM] networkd-dispatcher vulnerabilities
networkd-dispatcher vulnerabilities
It was discovered that networkd-dispatcher incorrectly handled internal
scripts. A local attacker could possibly use this issue to cause a race
condition, escalate privileges and execute arbitrary code.
(CVE-2022-29799, CVE-2022-29800)
No detection rules found.
No public exploits indexed.
Elastic
Nimbuspwn: Leveraging vulnerabilities to exploit Linux via Privilege Escalation — Elastic Security Labs
blogs_elastic·2022-06-02·CVSS 5.5
[MEDIUM] Nimbuspwn: Leveraging vulnerabilities to exploit Linux via Privilege Escalation — Elastic Security Labs
## Nimbuspwn: Leveraging vulnerabilities to exploit Linux via Privilege Escalation
Microsoft 365 Defender team released a post detailing several identified vulnerabilities. These vulnerabilities allow adversarial groups to escalate privileges on Linux systems, allowing for deployment of payloads, ransomware, or other attacks.
## Summary
The Microsoft 365 Defender team released a post detailing several identified vulnerabilities. These vulnerabilities allow adversarial groups to easily escalate privileges on Linux systems, allowing for deployment of payloads, ransomware, or other malicious actions. Collectively known as Nimbuspwn, these vulnerabilities include a series of security issues within networkd-dispatcher, specifically directory traversal, symlink race, and TOCTU race conditions
Elastic
Nimbuspwn: Leveraging vulnerabilities to exploit Linux via Privilege Escalation — Elastic Security Labs
blogs_elastic·2022-06-02·CVSS 5.5
[MEDIUM] Nimbuspwn: Leveraging vulnerabilities to exploit Linux via Privilege Escalation — Elastic Security Labs
2 June 2022•Jake King
# Nimbuspwn: Leveraging vulnerabilities to exploit Linux via Privilege Escalation
Microsoft 365 Defender team released a post detailing several identified vulnerabilities. These vulnerabilities allow adversarial groups to escalate privileges on Linux systems, allowing for deployment of payloads, ransomware, or other attacks.
2 min readDetection Engineering, Enablement
## Summary
The Microsoft 365 Defender team released a post detailing several identified vulnerabilities. These vulnerabilities allow adversarial groups to easily escalate privileges on Linux systems, allowing for deployment of payloads, ransomware, or other malicious actions. Collectively known as Nimbuspwn, these vulnerabilities include a series of security issues within networkd-dispatcher, specif
Checkpoint
2nd May – Threat Intelligence Report
blogs_checkpoint·2022-05-02·CVSS 9.8
CVE-2022-22954 [CRITICAL] 2nd May – Threat Intelligence Report
Latest Publications
CPR Podcast Channel
AI Research
Web 3.0 Security
Intelligence Reports
ThreatCloud AI
Threat Intelligence & Research
Zero Day Protection
Sandblast File Analysis
About Us
SUBSCRIBE
2026
2025
2024
2023
2022
2021
2020
2019
2018
2017
2016
## 2nd May – Threat Intelligence Report
For the latest discoveries in cyber research for the week of 2nd May, please download our Threat Intelligence Bulletin .
Top Attacks and Breaches
North Korean government connected group initiated in March 2022 a spear-phishing campaign against journalists who specialize in the North Korea coverage. The group used Goldbackdoor malware that is linked to malware families that are attributed to APT37.
Threat actor affiliated with a Chinese government targeted Russian officials
2022-09-21
Published