vulnerability

Oracle Linux: CVE-2021-40348: ELSA-2023-12331: spacewalk-admin security update (IMPORTANT)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
9	(AV:N/AC:M/Au:N/C:C/I:C/A:C)	Nov 1, 2021	May 9, 2023	Dec 3, 2025

Severity

CVSS

(AV:N/AC:M/Au:N/C:C/I:C/A:C)

Published

Nov 1, 2021

Added

May 9, 2023

Modified

Dec 3, 2025

Description

Spacewalk 2.10, and derivatives such as Uyuni 2021.08, allows code injection. rhn-config-satellite.pl doesn't sanitize the configuration filename used to append Spacewalk-specific key-value pair. The script is intended to be run by the tomcat user account with Sudo, according to the installation setup. This can lead to the ability of an attacker to use --option to append arbitrary code to a root-owned file that eventually will be executed by the system. This is fixed in Uyuni spacewalk-admin 4.3.2-1.

Solution

oracle-linux-upgrade-spacewalk-admin

References

CVE-2021-40348
https://attackerkb.com/topics/CVE-2021-40348
ELSA-ELSA-2023-12331
CWE-94

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today