CVE-2021-36779 - CERT CVE
ID CVE-2021-36779
Sažetak A Missing Authentication for Critical Function vulnerability in SUSE Longhorn allows any workload in the cluster to execute any binary present in the image on the host without authentication. This issue affects: SUSE Longhorn longhorn versions prior to 1.1.3; longhorn versions prior to 1.2.3.
Reference
CVSS
Base: 8.3
Impact: 10.0
Exploitability:6.5
Pristup
VektorSloženostAutentikacija
ADJACENT_NETWORK LOW NONE
Impact
PovjerljivostCjelovitostDostupnost
COMPLETE COMPLETE COMPLETE
CVSS vektor AV:A/AC:L/Au:N/C:C/I:C/A:C
Zadnje važnije ažuriranje 10-02-2023 - 02:31
Objavljeno 17-12-2021 - 09:15