CVE-2021-3762

Public Exploit

Description

A directory traversal vulnerability was found in the ClairCore engine of Clair. An attacker can exploit this by supplying a crafted container image which, when scanned by Clair, allows for arbitrary file write on the filesystem, potentially allowing for remote code execution.

References

Link	Tags
https://bugzilla.redhat.com/show_bug.cgi?id=2000795	issue tracking third party advisory patch
https://github.com/quay/claircore/pull/478	third party advisory patch
https://github.com/quay/clair/pull/1379	third party advisory patch
https://github.com/quay/clair/pull/1380	third party advisory patch
https://github.com/quay/claircore/commit/691f2023a1720a0579e688b69a2f4bfe1f4b7821	third party advisory patch
https://vulmon.com/exploitdetails?qidtp=maillist_oss_security&qid=d19fce9ede06e13dfb5630ece7f14f83	third party advisory exploit

Frequently Asked Questions

What is the severity of CVE-2021-3762?: CVE-2021-3762 has been scored as a critical severity vulnerability.
How to fix CVE-2021-3762?: To fix CVE-2021-3762, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2021-3762 being actively exploited in the wild?: It is possible that CVE-2021-3762 is being exploited or will be exploited in a near future based on public information. According to its EPSS score, there is a ~4% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2021-3762?: CVE-2021-3762 affects n/a quay/claircore.

Description

Category

CWE-22 – Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

References

Frequently Asked Questions