Xen Orchestra (with xo-web through 5.80.0 and xo-server through 5.84.0) mishandles authorization, as demonstrated by modified WebSocket resourceSet.getAll data is which the attacker changes the permission field from none to admin. The attacker gains access to data sets such as VMs, Backups, Audit, Users, and Groups.
References
Link | Resource |
---|---|
https://github.com/vatesfr/xen-orchestra/issues/5712 | Exploit Issue Tracking Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2021-07-12T13:18:48
Updated: 2021-07-12T13:18:48
Reserved: 2021-07-12T00:00:00
Link: CVE-2021-36383
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-07-12T14:15:11.770
Modified: 2022-07-12T17:42:04.277
Link: CVE-2021-36383
JSON object: View
Redhat Information
No data.
CWE