Vulnerability Details CVE-2021-33191
From Apache NiFi MiNiFi C++ version 0.5.0 the c2 protocol implements an "agent-update" command which was designed to patch the application binary. This "patching" command defaults to calling a trusted binary, but might be modified to an arbitrary value through a "c2-update" command. Said command is then executed using the same privileges as the application binary. This was addressed in version 0.10.0
Exploit prediction scoring system (EPSS) score
EPSS Score 0.059
EPSS Ranking 90.2%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
- http://www.openwall.com/lists/oss-security/2021/08/24/1
- https://lists.apache.org/thread.html/r6f27a2454f5f67dbe4e21c8eb1db537b01863a0bc3758f28aa60f032%40%3Cannounce.apache.org%3E
- https://www.openwall.com/lists/oss-security/2021/08/24/1
- http://www.openwall.com/lists/oss-security/2021/08/24/1
- https://lists.apache.org/thread.html/r6f27a2454f5f67dbe4e21c8eb1db537b01863a0bc3758f28aa60f032%40%3Cannounce.apache.org%3E
- https://www.openwall.com/lists/oss-security/2021/08/24/1
Products affected by CVE-2021-33191
-
cpe:2.3:a:apache:nifi_minifi_c++:0.5.0
-
cpe:2.3:a:apache:nifi_minifi_c++:0.6.0
-
cpe:2.3:a:apache:nifi_minifi_c++:0.9.0