CVE-2021-41617

HIGH

Openbsd Openssh < 8.8 - Privilege Escalation

Title source: rule
STIX 2.1

Description

sshd in OpenSSH 6.2 through 8.x before 8.8, when certain non-default configurations are used, allows privilege escalation because supplemental groups are not initialized as expected. Helper programs for AuthorizedKeysCommand and AuthorizedPrincipalsCommand may run with privileges associated with group memberships of the sshd process, if the configuration specifies running the command as a different user.

Exploits (1)

nomisec SCANNER 2 stars
by AdnanApriliyansyahh · poc
https://github.com/AdnanApriliyansyahh/CVE-2021-41617

References (14)

Core 14
Core References
Third Party Advisory vendor-advisory
https://www.debian.org/security/2023/dsa-5586
Issue Tracking, Patch, Third Party Advisory
https://bugzilla.suse.com/show_bug.cgi?id=1190975
Release Notes, Vendor Advisory
https://www.openssh.com/txt/release-8.8

Scores

CVSS v3 7.0
EPSS 0.0027
EPSS Percentile 50.7%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

Status published
Products (16)
fedoraproject/fedora 33
fedoraproject/fedora 34
fedoraproject/fedora 35
netapp/active_iq_unified_manager
netapp/aff_500f_firmware
netapp/aff_a250_firmware
netapp/clustered_data_ontap
netapp/hci_management_node
netapp/ontap_select_deploy_administration_utility
netapp/solidfire
... and 6 more
Published Sep 26, 2021
Tracked Since Feb 18, 2026