Lucene search
Alpine Linux Development TeamALPINE:CVE-2022-42717HistoryOct 11, 2022 - 11:15 p.m.
CVE-2022-42717
2022-10-1123:15:00
Alpine Linux Development Team
security.alpinelinux.org
21
hashicorp packer
sudoers configuration
non-privileged users
arbitrary commands
root
linux
cve-2022-42717
0.0004 Low
EPSS
Percentile
12.8%
An issue was discovered in Hashicorp Packer before 2.3.1. The recommended sudoers configuration for Vagrant on Linux is insecure. If the host has been configured according to this documentation, non-privileged users on the host can leverage a wildcard in the sudoers configuration to execute arbitrary commands as root.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Alpine | 3.16-community | noarch | packer | = 1.8.1-r4 | UNKNOWN |
| Alpine | 3.17-community | noarch | packer | = 1.8.4-r5 | UNKNOWN |
| Alpine | 3.18-community | noarch | packer | = 1.8.7-r4 | UNKNOWN |
Related
cvelist
cvelist
CVE-2022-42717
2022-10-11 00:00:00
cbl_mariner
cbl_mariner
CVE-2022-42717 affecting package packer for versions less than 1.8.7-1
2024-01-19 03:54:24
prion
prion
Design/Logic Flaw
2022-10-11 23:15:00
ubuntucve
ubuntucve
CVE-2022-42717
2022-10-11 00:00:00
cve
cve
CVE-2022-42717
2022-10-11 23:15:10
nvd
nvd
CVE-2022-42717
2022-10-11 23:15:10
osv
osv
CVE-2022-42717
2022-10-11 23:15:10