Vulnerability Details : CVE-2022-29549
An issue was discovered in Qualys Cloud Agent 4.8.0-49. It executes programs at various full pathnames without first making ownership and permission checks (e.g., to help ensure that a program was installed by root) and without integrity checks (e.g., a checksum comparison against known legitimate programs). Also, the vendor recommendation is to install this agent software with root privileges. Thus, privilege escalation is possible on systems where any of these pathnames is controlled by a non-root user. An example is /opt/firebird/bin/isql, where the /opt/firebird directory is often owned by the firebird user.
Vulnerability category: Gain privilege
Products affected by CVE-2022-29549
- cpe:2.3:a:qualys:cloud_agent_for_linux:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2022-29549
0.05%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 13 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2022-29549
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
7.3
|
HIGH | CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H |
1.3
|
5.9
|
NIST |
CWE ids for CVE-2022-29549
-
The product does not validate or incorrectly validates the integrity check values or "checksums" of a message. This may prevent it from detecting if the data has been modified or corrupted in transmission.Assigned by: nvd@nist.gov (Primary)
References for CVE-2022-29549
-
http://seclists.org/fulldisclosure/2022/Sep/10
Full Disclosure: Multiple vulnerabilities discovered in Qualys Cloud AgentMailing List;Third Party Advisory
-
http://packetstormsecurity.com/files/168367/Qualys-Cloud-Agent-Arbitrary-Code-Execution.html
Qualys Cloud Agent Arbitrary Code Execution ≈ Packet StormThird Party Advisory
-
https://blog.qualys.com/vulnerabilities-threat-research
Category: Vulnerabilities and Threat Research | Qualys Security BlogVendor Advisory
-
http://software.firstworks.com/p/getting-started-with-firebird.html
firstworks software and systems: Getting Started with FirebirdNot Applicable
-
https://blog.qualys.com/product-tech/2022/08/15/qualys-security-updates-cloud-agent-for-linux
Qualys Security Updates: Cloud Agent for Linux | Qualys Security BlogVendor Advisory
Jump to