Lucene search
GoogleOSV:CVE-2021-29221HistoryApr 09, 2021 - 2:15 p.m.
CVE-2021-29221
2021-04-0914:15:12
Google
osv.dev
4
A local privilege escalation vulnerability was discovered in Erlang/OTP prior to version 23.2.3. By adding files to an existing installation’s directory, a local attacker could hijack accounts of other users running Erlang programs or possibly coerce a service running with “erlsrv.exe” to execute arbitrary code as Local System. This can occur only under specific conditions on Windows with unsafe filesystem permissions.
| CPE | Name | Operator | Version |
|---|---|---|---|
| otp | eq | OTP-22.1.7 | |
| otp | eq | OTP-22.1.4 | |
| otp | eq | OTP-19.1.1 | |
| otp | eq | OTP-18.0.3 | |
| otp | eq | OTP-21.3.8.10 | |
| otp | eq | OTP-21.3.8.5 | |
| otp | eq | OTP-22.0.5 | |
| otp | eq | OTP-18.3.3 | |
| otp | eq | OTP-17.5.1 | |
| otp | eq | OTP-19.3.6.3 |
Related
nvd
nvd
CVE-2021-29221
2021-04-09 14:15:12
photon
photon
Important Photon OS Security Update - PHSA-2021-0235
2021-05-13 00:00:00
Important Photon OS Security Update - PHSA-2021-3.0-0235
2021-05-12 00:00:00
prion
prion
Privilege escalation
2021-04-09 14:15:00
nessus
nessus
Photon OS 3.0: Erlang PHSA-2021-3.0-0235
2021-05-21 00:00:00
Photon OS 1.0: Erlang PHSA-2021-1.0-0414
2021-07-22 00:00:00
cvelist
cvelist
CVE-2021-29221
2021-04-09 13:34:59
cve
cve
CVE-2021-29221
2021-04-09 14:15:12
debiancve
debiancve
CVE-2021-29221
2021-04-09 14:15:12
hackerone
hackerone
Node.js: Node Installer Local Privilege Escalation
2021-05-28 00:40:40