Description
The restricted shell provided by Akkadian Provisioning Manager Engine (PME) can be escaped by abusing the 'Edit MySQL Configuration' command. This command launches a standard vi editor interface which can then be escaped. This issue was resolved in Akkadian OVA appliance version 3.0 (and later), Akkadian Provisioning Manager 5.0.2 (and later), and Akkadian Appliance Manager 3.3.0.314-4a349e0 (and later).
Analysis
No analysis available yet.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| Akkadian | Provisioning Manager Engine (PME) | affected |
|
Configuration 1 [-]
|
No data.
No data available yet.
Remediation
No remediation available yet.
Tracking
Sign in to view the affected projects.
Advisories
No advisories yet.
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: rapid7
Published:
Updated: 2024-08-03T23:03:33.468Z
Reserved: 2021-04-22T00:00:00.000Z
Link: CVE-2021-31581
Vulnrichment
No data.
NVD
Status : Modified
Published: 2021-07-22T19:15:08.953
Modified: 2024-11-21T06:05:56.783
Link: CVE-2021-31581
Redhat
No data.
OpenCVE Enrichment
No data.