OESA-2022-1541
- Source
- https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2022-1541
- Import Source
- https://repo.openeuler.org/security/data/osv/OESA-2022-1541.json
- JSON Data
- https://api.osv.dev/v1/vulns/OESA-2022-1541
- Upstream
- Published
- 2022-03-03T11:03:33Z
- Modified
- 2025-09-03T06:17:27.923955Z
- Summary
- A-Tune security update
- Details
-
atune is a service for atuned AI tuning system.
Security Fix(es):
Log in as a local user and run the curl command to access the local atune url interface to escalate the local privilege or modify any file. Authentication is not forcibly enabled in the default configuration.(CVE-2021-33658)
- Database specific
{ "severity": "High" }- References
Affected packages
openEuler:20.03-LTS-SP1 / A-Tune
Package
- Name
- A-Tune
- Purl
- pkg:rpm/openEuler/A-Tune&distro=openEuler-20.03-LTS-SP1
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixedatune-0.3-0.8.oe1
Ecosystem specific
{
"src": [
"atune-0.3-0.8.oe1.src.rpm"
],
"x86_64": [
"atune-client-0.3-0.8.oe1.x86_64.rpm",
"atune-0.3-0.8.oe1.x86_64.rpm",
"atune-db-0.3-0.8.oe1.x86_64.rpm",
"atune-engine-0.3-0.8.oe1.x86_64.rpm"
],
"aarch64": [
"atune-client-0.3-0.8.oe1.aarch64.rpm",
"atune-engine-0.3-0.8.oe1.aarch64.rpm",
"atune-0.3-0.8.oe1.aarch64.rpm",
"atune-db-0.3-0.8.oe1.aarch64.rpm"
]
}
openEuler:20.03-LTS-SP2 / A-Tune
Package
- Name
- A-Tune
- Purl
- pkg:rpm/openEuler/A-Tune&distro=openEuler-20.03-LTS-SP2
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixedatune-0.3-0.9.oe1
Ecosystem specific
{
"src": [
"atune-0.3-0.9.oe1.src.rpm"
],
"x86_64": [
"atune-client-0.3-0.9.oe1.x86_64.rpm",
"atune-0.3-0.9.oe1.x86_64.rpm",
"atune-db-0.3-0.9.oe1.x86_64.rpm",
"atune-engine-0.3-0.9.oe1.x86_64.rpm"
],
"aarch64": [
"atune-client-0.3-0.9.oe1.aarch64.rpm",
"atune-engine-0.3-0.9.oe1.aarch64.rpm",
"atune-0.3-0.9.oe1.aarch64.rpm",
"atune-db-0.3-0.9.oe1.aarch64.rpm"
]
}
openEuler:20.03-LTS-SP3 / A-Tune
Package
- Name
- A-Tune
- Purl
- pkg:rpm/openEuler/A-Tune&distro=openEuler-20.03-LTS-SP3
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixedatune-1.0.0-3.oe1
Ecosystem specific
{
"src": [
"atune-1.0.0-3.oe1.src.rpm"
],
"x86_64": [
"atune-client-1.0.0-3.oe1.x86_64.rpm",
"atune-1.0.0-3.oe1.x86_64.rpm",
"atune-db-1.0.0-3.oe1.x86_64.rpm",
"atune-engine-1.0.0-3.oe1.x86_64.rpm"
],
"aarch64": [
"atune-client-1.0.0-3.oe1.aarch64.rpm",
"atune-engine-1.0.0-3.oe1.aarch64.rpm",
"atune-1.0.0-3.oe1.aarch64.rpm",
"atune-db-1.0.0-3.oe1.aarch64.rpm"
]
}