Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News
Sign In Sign Up

CVE-2021-32835

UNKNOWN
Published 2021-09-09T01:50:11
Actions:

Expert Analysis

Professional remediation guidance

Get tailored security recommendations from our analyst team for CVE-2021-32835. We'll provide specific mitigation strategies based on your environment and risk profile.

No CVSS data available

Description

Eclipse Keti is a service that was designed to protect RESTfuls API using Attribute Based Access Control (ABAC). In Keti a sandbox escape vulnerability may lead to post-authentication Remote Code execution. This vulnerability is known to exist in the latest commit at the time of writing this CVE (commit a1c8dbe). For more details see the referenced GHSL-2021-063.

Available Exploits

No exploits available for this CVE.

Related News

No news articles found for this CVE.

Affected Products

eclipse

keti

Affected Versions:

<= a1c8dbe

GitHub Security Advisories

Community-driven vulnerability intelligence from GitHub

⚠ Unreviewed CRITICAL

GHSA-g8rq-cfjj-j3hv

Advisory Details

Eclipse Keti is a service that was designed to protect RESTfuls API using Attribute Based Access Control (ABAC). In Keti a sandbox escape vulnerability may lead to post-authentication Remote Code execution. This vulnerability is known to exist in the latest commit at the time of writing this CVE (commit a1c8dbe). For more details see the referenced GHSL-2021-063.

CVSS Scoring

CVSS Score

9.0

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2021-32835
ADVISORY https://securitylab.github.com/advisories/GHSL-2021-063-eclipse-keti

Advisory provided by GitHub Security Advisory Database. Published: May 24, 2022, Modified: May 24, 2022

References

https://securitylab.github.com/advisories/GHSL-2021-063-eclipse-keti/
Published: 2021-09-09T01:50:11
Last Modified: 2024-08-03T23:33:56.105Z
Copied to clipboard!