AZL-37046

See a problem?

Import Source

https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-37046.json

JSON Data

https://api.osv.dev/v1/vulns/AZL-37046

Upstream

CVE-2023-3899

Published

2023-08-23T11:15:07Z

Modified

2026-04-21T04:28:06.303545Z

Severity

7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

CVE-2023-3899 affecting package subscription-manager 1.29.30-2

Details

A vulnerability was found in subscription-manager that allows local privilege escalation due to inadequate authorization. The D-Bus interface com.redhat.RHSM1 exposes a significant number of methods to all users that could change the state of the registration. By using the com.redhat.RHSM1.Config.SetAll() method, a low-privileged local user could tamper with the state of the registration, by unregistering the system or by changing the current entitlements. This flaw allows an attacker to set arbitrary configuration directives for /etc/rhsm/rhsm.conf, which can be abused to cause a local privilege escalation to an unconfined root.

References

https://nvd.nist.gov/vuln/detail/CVE-2023-3899

Affected packages

Azure Linux:3 / subscription-manager

Package

Name: subscription-manager
Purl: pkg:rpm/azure-linux/subscription-manager

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Last affected

1.29.30-2

Database specific

source

"https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-37046.json"