A flaw was found in SSSD, where the sssctl command was vulnerable to shell command injection via the logs-fetch and cache-expire subcommands. This flaw allows an attacker to trick the root user into running a specially crafted sssctl command, such as via sudo, to gain root access. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: redhat
Published: 2021-12-23T00:00:00
Updated: 2024-08-03T17:01:07.617Z
Reserved: 2021-06-24T00:00:00
Link: CVE-2021-3621
Vulnrichment
No data.
NVD
Status : Modified
Published: 2021-12-23T21:15:08.920
Modified: 2024-11-21T06:22:00.150
Link: CVE-2021-3621
Redhat