CVE-2022-30984

Published: Aug 26, 2022Modified: Nov 21, 2024

7.8

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 1.8 / Impact: 5.9

Source: NVD

Description

A buffer overflow vulnerability in the Rubrik Backup Service (RBS) Agent for Linux or Unix-based systems in Rubrik CDM 7.0.1, 7.0.1-p1, 7.0.1-p2 or 7.0.1-p3 before CDM 7.0.2-p2 could allow a local attacker to obtain root privileges by sending a crafted message to the RBS agent.

Affected (4)

Products: Rubrik: Cdm

1 product

Configuration A

4 vulnerable · 2 platform

Vulnerable Software	Affected Versions
Rubrik Cdm	Version 7.0.1
Rubrik Cdm	Version 7.0.1 p1
Rubrik Cdm	Version 7.0.1 p2
Rubrik Cdm	Version 7.0.1 p3

Running on/with	Platform Versions
Linux Linux Kernel	All versions
Opengroup Unix	All versions

Related CWEs

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

References (4)

https://rubrik.com

Source: cve@mitre.org

Vendor Advisory

https://www.rubrik.com/advisories/rbk-20220705-V0037

Source: cve@mitre.org

Vendor Advisory

https://rubrik.com

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://www.rubrik.com/advisories/rbk-20220705-V0037

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.