A flaw was found in Cockpit. Deleting a sosreport with a crafted name via the Cockpit web interface can lead to a command injection vulnerability, resulting in privilege escalation. This issue affects Cockpit versions 270 and newer.
Fixes

Solution

No solution given by the vendor.


Workaround

Do not remove SOS reports with strange names from the Cockpit web interface.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published:

Updated: 2025-08-30T13:14:56.777Z

Reserved: 2024-03-26T16:48:38.370Z

Link: CVE-2024-2947

cve-icon Vulnrichment

Updated: 2024-08-01T19:32:42.293Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-03-28T19:15:48.693

Modified: 2024-11-21T09:10:54.473

Link: CVE-2024-2947

cve-icon Redhat

Severity : Moderate

Publid Date: 2024-03-27T00:00:00Z

Links: CVE-2024-2947 - Bugzilla

cve-icon OpenCVE Enrichment

No data.