支持本站 — 捐款将帮助我们持续运营

目标: 1000 元,已筹: 1000

100.0%
立即捐款

POC详情: 72569d34ac491cf0dd85a07829fadb70d51d4a0d

来源
https://github.com/mbadanoiu/CVE-2021-20253
关联漏洞
标题:Red Hat ansible-tower 安全漏洞 (CVE-2021-20253)
Description:Red Hat ansible-tower是美国红帽(Red Hat)公司的一个应用软件。提供基于角色的访问控制,包括控制对SSH和其他服务使用安全存储的凭据的使用。 ansible-tower 存在安全漏洞,该漏洞允许攻击者可利用该漏洞将低特权用户的特权提升到用户权限。
Description
CVE-2021-20253: Privilege Escalation via Job Isolation Escape in Ansible Tower
介绍
# CVE-2021-20253: Privilege Escalation via Job Isolation Escape in Ansible Tower

A flaw was found in ansible-tower. The default installation is vulnerable to Job Isolation escape allowing an attacker to elevate the privilege from a low privileged user to the awx user from outside the isolated environment. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.

### Vendor Disclosure:

The vendor's disclosure and fix for this vulnerability can be found [here](https://access.redhat.com/security/cve/cve-2021-20253).

### Requirements:

This vulnerability requires:
<br/>
- Being able to execute commands in isolation environment in Ansible Tower
- Having low privileged access to the OS

### Proof Of Concept:

More details and the exploitation process can be found in this [PDF](https://github.com/mbadanoiu/CVE-2021-20253/blob/main/Ansible%20Tower%20Disclosures%20-%20CVE-2021-20253.pdf).
文件快照

 [4.0K]  /data/pocs/72569d34ac491cf0dd85a07829fadb70d51d4a0d
├── [1.1M]  Ansible Tower Disclosures - CVE-2021-20253.pdf
└── [ 955]  README.md

0 directories, 2 files
神龙机器人已为您缓存
备注
    1. 建议优先通过来源进行访问。
    2. 如果因为来源失效或无法访问,请发送邮件到 f.jinxu#gmail.com 索取本地快照(把 # 换成 @)。
    3. 神龙已为您对 POC 代码进行快照,为了长期维护,请考虑为本地 POC 付费/捐赠,感谢您的支持。