CVE-2021-31822

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2021-31822

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-31822.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2021-31822

Published

2021-11-24T16:15:13Z

Modified

2025-01-14T09:13:03.810425Z

Severity

7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

When Octopus Tentacle is installed on a Linux operating system, the systemd service file permissions are misconfigured. This could lead to a local unprivileged user modifying the contents of the systemd service file to gain privileged access.

References

https://advisories.octopus.com/adv/2021-11---Local-privilege-escalation-in-Octopus-Tentacle-%28CVE-2021-31822%29.2283732993.html

Affected packages

Git / github.com/octopusdeploy/octopustentacle

Affected ranges

Type: GIT
Repo: https://github.com/octopusdeploy/octopustentacle
Events: Introduced

fd9aeb49f65cf142eb28899520d9ed5c4246f6b2

Fixed

b2ca1f32e6ff415a22f195e51ac6a01987f3907f

Affected versions

3.*

3.15.4

3.15.5

3.15.6

3.15.7

3.15.8

3.16.0

3.16.1

3.16.2

3.16.3

3.16.4

3.17.0

3.18.0

3.19.0

3.19.1

3.19.2

3.20.0

3.20.1

3.21.0

3.22.0

3.22.1

3.22.1-deleteme

3.22.2

3.23.0

3.23.1

3.23.2

3.24.0

3.25.0

4.*

4.0.0

4.0.1

4.0.2

4.0.3

4.0.4

4.0.5

4.0.6

5.*

5.0.0

5.0.0-beta1

5.0.0-beta14

5.0.0-beta15

5.0.0-beta16

5.0.1

5.0.10

5.0.11

5.0.12

5.0.13

5.0.14

5.0.15

5.0.16

5.0.2

5.0.3

5.0.4

5.0.5

5.0.6

5.0.7

5.0.8

5.0.9

6.*

6.0.291

6.0.294

6.0.295

6.0.303

6.0.304

6.0.306

6.0.307

6.0.308

6.0.309

6.0.310

6.0.311

6.0.312

6.0.313

6.0.314

6.0.315

6.0.316

6.0.317

6.0.319

6.0.320

6.0.323

6.0.325

6.0.329

6.0.332

6.0.333

6.0.334

6.0.337

6.0.339

6.0.340

6.0.341

6.0.342

6.0.343

6.0.344

6.0.352

6.0.353

6.0.356

6.0.359

6.0.364

6.0.365

6.0.368

6.0.370

6.0.371

6.0.372

6.0.373

6.0.374

6.0.375

6.0.376

6.0.377

6.0.380

6.0.381

6.0.383

6.0.386

6.0.388

6.0.389

6.0.390

6.0.394

6.0.397

6.0.403

6.0.404

6.0.405

6.0.408

6.0.409

6.0.423

6.0.424

6.0.425

6.0.426

6.0.429

6.0.435

6.0.436

6.0.437

6.0.440

6.0.443

6.0.444

6.0.445

6.0.446

6.0.447

6.0.448

6.0.449

6.0.450

6.0.451

6.0.452

6.0.453

6.0.454

6.0.455

6.0.456

6.0.460

6.0.461

6.0.462

6.0.463

6.0.464

6.0.466

6.0.477

6.0.478

6.0.479

6.0.480

6.0.481

6.0.486

6.0.489

6.0.490

6.0.492

6.0.493

6.0.498

6.0.515

6.0.517

6.0.518

6.0.519

6.0.521

6.0.523

6.0.531

6.0.533

6.0.534

6.0.536

6.0.538

6.0.539

6.0.543

6.0.545

6.0.549

6.0.551

6.0.555

6.0.559

6.0.566

6.0.567

6.0.568

6.0.576

6.0.577

6.0.581

6.0.582

6.0.587

6.0.589

6.0.591

6.0.592

6.0.593

6.0.594

6.0.595

6.0.599

6.0.601

6.0.603

6.0.604

6.0.605

6.0.612

6.0.631

6.0.641

6.0.643

6.0.645

6.1.0

6.1.1008

6.1.1010

6.1.1012

6.1.1014

6.1.1016

6.1.1018

6.1.1020

6.1.1022

6.1.1024

6.1.1026

6.1.1028

6.1.1032

6.1.1034

6.1.1035

6.1.1038

6.1.1044

6.1.1048

6.1.1056

6.1.1062

6.1.1066

6.1.1068

6.1.1072

6.1.1080

6.1.1084

6.1.1086

6.1.1088

6.1.1104

6.1.1107

6.1.1109

6.1.1111

6.1.648

6.1.652

6.1.655

6.1.659

6.1.667

6.1.668

6.1.670

6.1.690

6.1.693

6.1.696

6.1.698

6.1.703

6.1.704

6.1.708

6.1.710

6.1.713

6.1.719

6.1.720

6.1.721

6.1.723

6.1.724

6.1.725

6.1.727

6.1.728

6.1.730

6.1.732

6.1.734

6.1.736

6.1.738

6.1.742

6.1.743

6.1.753

6.1.757

6.1.758

6.1.763

6.1.774

6.1.775

6.1.787

6.1.790

6.1.816

6.1.820

6.1.875

6.1.877

6.1.879

6.1.881

6.1.885

6.1.886

6.1.887

6.1.888

6.1.890

6.1.894

6.1.895

6.1.899

6.1.909

6.1.918

6.1.920

6.1.922

6.1.928

6.1.930

6.1.938

6.1.942

6.1.944

6.1.946

6.1.948

6.1.950

6.1.952

6.1.954

6.1.958

6.1.961

6.1.963

6.1.966

6.1.968

6.1.970

6.1.972

6.1.974

6.1.976

6.1.979

6.1.981

6.1.983

6.1.985

6.1.987

6.1.989

6.1.991