CVE-2024-2947
published 2024-03-28CVE-2024-2947: A flaw was found in Cockpit. Deleting a sosreport with a crafted name via the Cockpit web interface can lead to a command injection vulnerability, resulting in…
PriorityP339high7.3CVSS 3.1
AVLACLPRLUIRSUCHIHAH
EPSS
1.18%
63.8th percentile
A flaw was found in Cockpit. Deleting a sosreport with a crafted name via the Cockpit web interface can lead to a command injection vulnerability, resulting in privilege escalation. This issue affects Cockpit versions 270 and newer.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| agentejo | cockpit | >= 0 < 287.1-0+deb12u1 | 287.1-0+deb12u1 |
| agentejo | cockpit | >= 0 < 314-1 | 314-1 |
| agentejo | cockpit | >= 0 < 314-1 | 314-1 |
| debian | cockpit | < cockpit 287.1-0+deb12u1 (bookworm) | cockpit 287.1-0+deb12u1 (bookworm) |
CVSS provenance
nvdv3.17.3HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
osv7.3HIGH
vendor_debian7.3HIGH
vendor_redhat7.3HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
cockpit: command injection when deleting a sosreport with a crafted name
vendor_redhat·2024-03-27·CVSS 7.3
CVE-2024-2947 [HIGH] CWE-77 cockpit: command injection when deleting a sosreport with a crafted name
cockpit: command injection when deleting a sosreport with a crafted name
A flaw was found in Cockpit. Deleting a sosreport with a crafted name via the Cockpit web interface can lead to a command injection vulnerability, resulting in privilege escalation. This issue affects Cockpit versions 270 and newer.
A flaw was found in Cockpit. Deleting a sosreport with a crafted name via the Cockpit web interface can lead to a command injection vulnerability, resulting in privilege escalation. This issue affects Cockpit versions 270 and newer.
Statement: The Cockpit package, as shipped in Red Hat Enterprise Linux 7, 8.2, 8.4, and 8.6, is not affected by this vulnerability because the vulnerable code was introduced in a newer version of Cockpit.
Mitigation: Do not remove SOS reports with strange n
Debian
CVE-2024-2947: cockpit - A flaw was found in Cockpit. Deleting a sosreport with a crafted name via the Co...
vendor_debian·2024·CVSS 7.3
CVE-2024-2947 [HIGH] CVE-2024-2947: cockpit - A flaw was found in Cockpit. Deleting a sosreport with a crafted name via the Co...
A flaw was found in Cockpit. Deleting a sosreport with a crafted name via the Cockpit web interface can lead to a command injection vulnerability, resulting in privilege escalation. This issue affects Cockpit versions 270 and newer.
Scope: local
bookworm: resolved (fixed in 287.1-0+deb12u1)
bullseye: resolved
forky: resolved (fixed in 314-1)
sid: resolved (fixed in 314-1)
trixie: resolved (fixed in 314-1)
OSV
CVE-2024-2947: A flaw was found in Cockpit
osv·2024-03-28·CVSS 7.3
CVE-2024-2947 [HIGH] CVE-2024-2947: A flaw was found in Cockpit
A flaw was found in Cockpit. Deleting a sosreport with a crafted name via the Cockpit web interface can lead to a command injection vulnerability, resulting in privilege escalation. This issue affects Cockpit versions 270 and newer.
GHSA
GHSA-8rqc-wx6q-m4qc: A flaw was found in Cockpit
ghsa_unreviewed·2024-03-28
CVE-2024-2947 [HIGH] CWE-77 GHSA-8rqc-wx6q-m4qc: A flaw was found in Cockpit
A flaw was found in Cockpit. Deleting a sosreport with a crafted name via the Cockpit web interface can lead to a command injection vulnerability, resulting in privilege escalation. This issue affects Cockpit versions 270 and newer.
No detection rules found.
No public exploits indexed.
https://access.redhat.com/errata/RHSA-2024:3667https://access.redhat.com/errata/RHSA-2024:3843https://access.redhat.com/security/cve/CVE-2024-2947https://bugzilla.redhat.com/show_bug.cgi?id=2271614https://access.redhat.com/errata/RHSA-2024:3667https://access.redhat.com/errata/RHSA-2024:3843https://access.redhat.com/security/cve/CVE-2024-2947https://bugzilla.redhat.com/show_bug.cgi?id=2271614https://lists.fedoraproject.org/archives/list/[email protected]/message/KNG7GXOZI6QH3OIQJYAYDB3CRRGH37Q5/https://lists.fedoraproject.org/archives/list/[email protected]/message/N3Q5SDIFACAY4VHACN5MMCMT3A53A3FB/https://lists.fedoraproject.org/archives/list/[email protected]/message/PIQY2HGDJW2JY27ALTS4GEVZZJJ4XQ36/
2024-03-28
Published