Lucene search
PRIOn knowledge basePRION:CVE-2021-31581HistoryJul 22, 2021 - 7:15 p.m.
Design/Logic Flaw
2021-07-2219:15:00
PRIOn knowledge base
www.prio-n.com
5
The restricted shell provided by Akkadian Provisioning Manager Engine (PME) can be escaped by abusing the ‘Edit MySQL Configuration’ command. This command launches a standard vi editor interface which can then be escaped. This issue was resolved in Akkadian OVA appliance version 3.0 (and later), Akkadian Provisioning Manager 5.0.2 (and later), and Akkadian Appliance Manager 3.3.0.314-4a349e0 (and later).
| CPE | Name | Operator | Version |
|---|---|---|---|
| ova_appliance | lt | 3.0 | |
| provisioning_manager | ge | 3.0.0 | |
| provisioning_manager | lt | 3.3.0.314 | |
| provisioning_manager | ge | 4.0.0 | |
| provisioning_manager | lt | 5.0.2 |
Related
nuclei
nuclei
Akkadian Provisioning Manager - Information Disclosure
2021-07-26 17:18:45
nvd
nvd
CVE-2021-31581
2021-07-22 19:15:08
cvelist
cvelist
cve
cve
CVE-2021-31581
2021-07-22 19:15:08
rapid7blog
rapid7blog
Akkadian Provisioning Manager Multiple Vulnerabilities Disclosure (Fixed)
2021-06-08 14:00:00
threatpost
threatpost
Bugs Lurking in Cisco UC Provisioning Platform
2021-06-11 21:09:39