Mend.io Vulnerability Database

What is a CVE vulnerability ID? icon What is a WS vulnerability ID? icon What is an MSC vulnerability ID? icon
New vulnerability? Tell us about it!
icon

We found results for “

CVE-2023-3972

Good to know:

icon
icon

Date: November 1, 2023

A vulnerability was found in insights-client. This security issue occurs because of insecure file operations or unsafe handling of temporary files and directories that lead to local privilege escalation. Before the insights-client has been registered on the system by root, an unprivileged local user or attacker could create the /var/tmp/insights-client directory (owning the directory with read, write, and execute permissions) on the system. After the insights-client is registered by root, an attacker could then control the directory content that insights are using by putting malicious scripts into it and executing arbitrary code as root (trivially bypassing SELinux protections because insights processes are allowed to disable SELinux system-wide).

Language: Python

Severity Score

Related Resources (13)

https://access.redhat.com/errata/RHSA-2023:6282
https://github.com/RedHatInsights/insights-core/pull/3878
https://access.redhat.com/errata/RHSA-2023:6811
https://nvd.nist.gov/vuln/detail/CVE-2023-3972
https://access.redhat.com/errata/RHSA-2023:6798
https://access.redhat.com/security/cve/CVE-2023-3972
https://access.redhat.com/errata/RHSA-2023:6795
https://bugzilla.redhat.com/show_bug.cgi?id=2227027
https://access.redhat.com/errata/RHSA-2023:6796
https://access.redhat.com/errata/RHSA-2023:6264
https://access.redhat.com/errata/RHSA-2023:6283
https://access.redhat.com/errata/RHSA-2023:6284
https://www.mend.io/vulnerability-database/CVE-2023-3972

Severity Score

Weakness Type (CWE)

Exposure of Resource to Wrong Sphere

CWE-668

Creation of Temporary File in Directory with Insecure Permissions

CWE-379

Top Fix

icon

Upgrade Version

Upgrade to version insights-core - 3.2.12

Learn More

CVSS v3.1

Base Score:
Attack Vector (AV): LOCAL
Attack Complexity (AC): LOW
Privileges Required (PR): LOW
User Interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality (C): HIGH
Integrity (I): HIGH
Availability (A): HIGH

Do you need more information?

Contact Us