6.5 - CVE-2021-33638

Executive Summary

Informations
Name	CVE-2021-33638	First vendor Publication	2023-10-29
Vendor	Cve	Last vendor Modification	2024-11-21

Security-Database Scoring CVSS v3

Cvss vector : CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:N
Overall CVSS Score	6.5
Base Score	6.5	Environmental Score	6.5
impact SubScore	4	Temporal Score	6.5
Exploitabality Sub Score	2

Attack Vector	Local	Attack Complexity	Low
Privileges Required	Low	User Interaction	None
Scope	Changed	Confidentiality Impact	None
Integrity Impact	High	Availability Impact	None
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector :
Cvss Base Score	N/A	Attack Range	N/A
Cvss Impact Score	N/A	Attack Complexity	N/A
Cvss Expoit Score	N/A	Authentication	N/A
Calculate full CVSS 2.0 Vectors scores

Detail

When the isula cp command is used to copy files from a container to a host machine and the container is controlled by an attacker, the attacker can escape the container.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-33638

CPE : Common Platform Enumeration

Type	Description	Count
Application	Openeuler Isula cpe:2.3:a:openeuler:isula:2.1.2:::::::* cpe:2.3:a:openeuler:isula:2.0.8-20210518.144540:::::::* cpe:2.3:a:openeuler:isula:2.0.18-10:::::::*	3

Sources (Detail)

https://gitee.com/src-openeuler/iSulad/pulls/600/files
https://gitee.com/src-openeuler/iSulad/pulls/627/files
https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler...

Source	Url

Alert History

If you want to see full details history, please login or register.

Date	Informations
2024-11-28 13:57:29	Multiple Updates
2023-11-08 09:27:33	Multiple Updates
2023-10-30 13:27:24	Multiple Updates
2023-10-29 13:27:25	First insertion

Copyright Security-Database 2006-2025 - Powered by themself ;) in 0.0329s

Facebook rss twitter linkedin mail