CVE-2022-29186

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2022-29186

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-29186.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2022-29186

Aliases

GHSA-qxjx-xr2m-hgqx

Published

2022-05-20T20:20:11Z

Modified

2025-12-04T10:20:28.510668Z

Severity

9.1 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N CVSS Calculator

Summary

Use of Hard-coded Cryptographic Key in rundeck/rundeck, rundeckpro/enterprise

Details

Rundeck is an open source automation service with a web console, command line tools and a WebAPI. Rundeck community and rundeck-enterprise docker images contained a pre-generated SSH keypair. If the idrsa.pub public key of the keypair was copied to authorizedkeys files on remote host, those hosts would allow access to anyone with the exposed private credentials. This misconfiguration only impacts Rundeck Docker instances of PagerDuty® Process Automation On Prem (formerly Rundeck) version 4.0 and earlier, not Debian, RPM or .WAR. Additionally, the idrsa.pub file would have to be copied from the Docker image filesystem contents without overwriting it and used to configure SSH access on a host. A patch on Rundeck's main branch has removed the pre-generated SSH key pair, but it does not remove exposed keys that have been configured. To patch, users must run a script on hosts in their environment to search for exposed keys and rotate them. Two workarounds are available: Do not use any pre-existing public key file from the rundeck docker images to allow SSH access by adding it to authorizedkeys files and, if you have copied the public key file included in the docker image, remove it from any authorized_keys files.

Database specific

{
    "cna_assigner": "GitHub_M",
    "cwe_ids": [
        "CWE-321"
    ],
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/29xxx/CVE-2022-29186.json"
}

References

Affected packages

Git / github.com/rundeck/rundeck

Affected ranges

Type: GIT
Repo: https://github.com/rundeck/rundeck
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

16ef7a70b202492f9fbb54d8af4bb8ea0afa10ad

Affected versions

Other

grails338-oci-baseline

v1.*

v1.0

v1.1

v1.1-docs1

v1.2

v1.3

v1.4

v1.4.0

v1.4.0.1

v1.4.0.2

v1.4.1

v1.4.2

v1.4.3

v1.4.4

v1.5

v1.5-01

v1.5-02

v1.5-03

v1.5-1

v1.5-rc1

v1.5-rc2

v1.5.1

v1.5.2

v1.5.3

v1.6.0

v1.6.0-rc1

v1.6.0-rc2

v1.6.0-rc3

v1.6.1

v1.6.2

v2.*

v2.0.0

v2.0.1

v2.0.2

v2.0.3

v2.0.4

v2.1.0

v2.1.1

v2.1.2

v2.1.3

v2.10.0

v2.10.1

v2.10.2

v2.10.3

v2.10.4

v2.10.5

v2.10.6

v2.10.7

v2.10.8

v2.11.0

v2.11.1

v2.11.2

v2.11.3

v2.2.0

v2.2.1

v2.2.2

v2.2.3

v2.3.0

v2.3.1

v2.3.2

v2.4.0

v2.4.1

v2.4.2

v2.5.0

v2.5.1

v2.5.2

v2.5.3

v2.6.0

v2.6.1

v2.6.1-docfix1

v2.6.10

v2.6.11

v2.6.2

v2.6.3

v2.6.4

v2.6.5

v2.6.6

v2.6.7

v2.6.8

v2.6.9

v2.7.0

v2.7.1

v2.7.2

v2.7.3

v2.8.0

v2.8.1

v2.8.2

v2.8.3

v2.8.4

v2.9.0

v2.9.1

v2.9.2

v2.9.3

v2.9.4

v3.*

v3.0.0

v3.0.0-alpha1

v3.0.0-alpha1-2

v3.0.0-alpha2

v3.0.0-alpha4

v3.0.0-beta1

v3.0.1

v3.0.11

v3.0.12

v3.0.13

v3.0.14

v3.0.15

v3.0.16

v3.0.17

v3.0.18

v3.0.19

v3.0.2

v3.0.20

v3.0.21

v3.0.3

v3.0.4

v3.0.5

v3.0.6

v3.0.7

v3.0.8

v3.0.9

v3.1.0

v3.1.1

v3.1.2

v3.2.0-rc2

v3.2.1

v3.2.2

v3.2.5

v3.2.6

v3.3.0

v3.3.0-preview1

v3.3.0-preview2

v3.3.1

v3.3.5

v3.3.6

v3.3.6-rc2

v3.3.6-rc3

v3.3.6-rc4

v3.3.7

v3.3.7-rc1

v3.3.7-rc2

v3.3.8

v3.3.8-rc1

v3.3.8-rc2

v3.3.8-rc3

v3.3.8-rc4

v3.3.8-rc5

v3.3.8-rc6

v3.3.8-rc7

v3.3.9

v3.3.9-rc1

v3.3.9-rc2

v3.3.9-rc3

v3.3.9-rc4

v3.4.10

v3.4.10-rc1

v3.4.5-alpha3

v3.4.6-alpha1