CVE-2021-35939

2022-08-2616:15:08

CWE-59

redhat

web.nvd.nist.gov

203

cve-2021-35939

incomplete fix

local privilege escalation

data confidentiality

integrity

system availability

CVSS3

6.7

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

AI Score

6.7

Confidence

High

EPSS

0.001

Percentile

32.1%

JSON

It was found that the fix for CVE-2017-7500 and CVE-2017-7501 was incomplete: the check was only implemented for the parent directory of the file to be created. A local unprivileged user who owns another ancestor directory could potentially use this flaw to gain root privileges. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.

Affected configurations

Nvd

Vulners

Node

rpmrpmRange<4.18

Node

redhatenterprise_linuxMatch8.0

VendorProductVersionCPE
rpmrpm*cpe:2.3:a:rpm:rpm:*:*:*:*:*:*:*:*
redhatenterprise_linux8.0cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
rpm	rpm	*	cpe:2.3:a:rpm:rpm::::::::
redhat	enterprise_linux	8.0	cpe:2.3:o:redhat:enterprise_linux:8.0:::::::*

CNA Affected

[
  {
    "vendor": "n/a",
    "product": "RPM",
    "versions": [
      {
        "version": "Fixed in RPM-v4.18",
        "status": "affected"
      }
    ]
  }
]