atune before 0.3-0.8 log in as a local user and run the curl command to access the local atune url interface to escalate the local privilege or modify any file. Authentication is not forcibly enabled in the default configuration.
References
Link | Resource |
---|---|
https://www.openeuler.org/zh/security/safety-bulletin/detail.html?id=openEuler-SA-2022-1541 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: openEuler
Published: 2022-03-11T17:54:21
Updated: 2022-03-11T17:54:21
Reserved: 2021-05-28T00:00:00
Link: CVE-2021-33658
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-03-11T18:15:21.320
Modified: 2022-03-18T13:30:23.597
Link: CVE-2021-33658
JSON object: View
Redhat Information
No data.
CWE