CVE-2022-47952

CWE-203CWE-668Exposure to Wrong Sphere5 documents5 sources
Severity
3.3LOW
EPSS
1.7%
top 17.71%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Linuxcontainers LXC
Timeline
PublishedJan 1

Description

lxc-user-nic in lxc through 5.0.1 is installed setuid root, and may allow local users to infer whether any file exists, even within a protected directory tree, because "Failed to open" often indicates that a file does not exist, whereas "does not refer to a network namespace path" often indicates that a file exists. NOTE: this is different from CVE-2018-6556 because the CVE-2018-6556 fix design was based on the premise that "we will report back to the user that the open() failed but the user has

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:NExploitability: 1.8 | Impact: 1.4

Affected Packages2 packages

Debianlxc< 1:4.0.6-2+deb11u2+3

🔴Vulnerability Details

3
CVEList
CVE-2022-47952: lxc-user-nic in lxc through 52023-01-01
GHSA
GHSA-qv29-rjwj-jjrm: lxc-user-nic in lxc through 52023-01-01
OSV
CVE-2022-47952: lxc-user-nic in lxc through 52023-01-01

📋Vendor Advisories

1
Debian
CVE-2022-47952: lxc - lxc-user-nic in lxc through 5.0.1 is installed setuid root, and may allow local ...2022
CVE-2022-47952 (LOW CVSS 3.3) | lxc-user-nic in lxc through 5.0.1 i | cvebase.io