Abrt: command-injection in abrt leading to local privilege escalation

A flaw was found in the ABRT daemon’s handling of user-supplied mount information.ABRT copies up to 12 characters from an untrusted input and places them directly into a shell command (docker inspect %s) without proper validation. An unprivileged local user can craft a payload that injects shell metacharacters, causing the root-running ABRT process to execute attacker-controlled commands and ultimately gain full root privileges.

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

OS命令中使用的特殊元素转义处理不恰当(OS命令注入)

Red Hat ABRT 安全漏洞

Red Hat ABRT是美国Red Hat公司的一套帮助用户检测和报告应用程序崩溃的工具。 Red Hat ABRT存在安全漏洞，该漏洞源于处理用户提供的挂载信息时缺少验证，可能导致本地用户执行任意命令并获得root权限。

N/A

N/A