Lucene search

Basic search
Lucene search
Search by product

Database

Vendors

Veracode Vulnerability DatabaseVERACODE:31577

HistoryAug 12, 2021 - 2:00 p.m.

Vulners
/
Veracode
/
Remote Code Execution (RCE)

Remote Code Execution (RCE)

2021-08-1214:00:18

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

remote code execution

gnu software

integer overflow

out-of-bounds heap write

EPSS

0.003

Percentile

65.1%

JSON

GNU is vulnerable to remote code execution. The vulnerability exists due to an integer overflow that triggers an out-of-bounds heap write.

References

git.savannah.gnu.org/cgit/cpio.git/commit/?id=dd96882877721703e19272fe25034560b794061b

github.com/fangqyi/cpiopwn

lists.gnu.org/archive/html/bug-cpio/2021-08/msg00000.html

lists.gnu.org/archive/html/bug-cpio/2021-08/msg00002.html

security-tracker.debian.org/tracker/CVE-2021-38185

nessus 39

prion 1

photon 8

cbl_mariner 2

openvas 22

osv 8

almalinux 1

oraclelinux 1

ubuntu 3

ubuntucve 1

suse 1

ibm 4

redhat 6

cvelist 1

redhatcve 1

alpinelinux 1

mageia 1

githubexploit 1

debiancve 1

cve 1

redos 1

amazon 1

rocky 1

nvd 1

cloudfoundry 1

debian 1

gentoo 1

avleonov 1

nessus

RHEL 8 : cpio (RHSA-2022:1991)

2022-05-11 00:00:00

Photon OS 1.0: Cpio PHSA-2021-1.0-0430

2021-08-27 00:00:00

AlmaLinux 8 : cpio (ALSA-2022:1991)

2022-05-12 00:00:00

prion

Integer overflow

2021-08-08 00:15:00

photon

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2021-1.0-0432

2021-09-04 00:00:00

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2021-2.0-0388

2021-09-03 00:00:00

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2021-4.0-0089

2021-08-26 00:00:00

cbl_mariner

CVE-2021-38185 affecting package cpio 2.13-3

2021-09-13 03:23:36

CVE-2021-38185 affecting package cpio for versions less than 2.13-4

2022-06-03 17:54:03

openvas

Huawei EulerOS: Security Advisory for cpio (EulerOS-SA-2021-2749)

2021-11-17 00:00:00

Ubuntu: Security Advisory (USN-5064-3)

2023-08-04 00:00:00

SUSE: Security Advisory (SUSE-SU-2021:14788-1)

2021-08-24 00:00:00

osv

cpio vulnerability

2022-01-27 17:25:42

cpio vulnerability

2021-09-08 11:14:41

CVE-2021-38185

2021-08-08 00:15:00

almalinux

Moderate: cpio security update

2022-05-10 06:43:49

oraclelinux

cpio security update

2022-05-17 00:00:00

ubuntu

GNU cpio vulnerability

2022-01-27 00:00:00

GNU cpio vulnerability

2021-09-08 00:00:00

GNU cpio vulnerability

2023-08-03 00:00:00

ubuntucve

CVE-2021-38185

2021-08-08 00:00:00

suse

Security update for cpio (important)

2021-08-16 00:00:00

ibm

Security Bulletin: IBM Sterling Connect:Direct for UNIX Certified Container is affected by arbitrary code executiondue to GNU cpio (CVE-2021-38185)

2022-08-01 10:01:49

Security Bulletin: IBM QRadar SIEM Application Framework Base Image is vulnerable to using components with Known Vulnerabilities

2022-10-25 15:02:36

Security Bulletin: IBM Sterling Connect:Direct for UNIX Certified Container is affected by multiple vulnerabilities in Red Hat Universal Base Image version 8.4-206.1626828523 and Binutils version 2.30-93

2022-03-14 20:12:12

redhat

(RHSA-2022:1991) Moderate: cpio security update

2022-05-10 06:43:49

(RHSA-2022:5006) Important: Red Hat OpenShift Service Mesh 2.1.3 Containers security update

2022-06-13 12:38:39

(RHSA-2022:6526) Important: OpenShift Virtualization 4.11.0 Images security and bug fix update

2022-09-14 16:32:31

cvelist

CVE-2021-38185

2021-08-07 00:00:00

redhatcve

CVE-2021-38185

2021-08-09 20:19:57

alpinelinux

CVE-2021-38185

2021-08-08 00:15:07

mageia

Updated cpio packages fix security vulnerability

2021-09-23 07:49:29

githubexploit

Exploit for Integer Overflow or Wraparound in Gnu Cpio

2021-07-19 20:10:13

debiancve

CVE-2021-38185

2021-08-08 00:15:07

cve

CVE-2021-38185

2021-08-08 00:15:07

redos

ROS-20240730-03

2024-07-30 00:00:00

amazon

Medium: cpio

2023-03-02 22:35:00

rocky

cpio security update

2022-05-10 06:43:49

nvd

CVE-2021-38185

2021-08-08 00:15:07

cloudfoundry

USN-5064-1: GNU cpio vulnerability | Cloud Foundry

2021-10-04 00:00:00

debian

[SECURITY] [DLA 3445-1] cpio security update

2023-06-04 20:12:22

gentoo

cpio: Arbitrary Code Execution

2024-07-01 00:00:00

avleonov

Scanvus now supports Vulners and Vulns.io VM Linux vulnerability detection APIs

2022-12-30 18:03:13

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

EPSS

0.003

Percentile

65.1%

JSON

Related for VERACODE:31577