CVE-2022-24302

Common vulnerabilities & exposures (CVE)

Published at: - 18-03-2022 01:00

Last modified: - 18-03-2022 01:00

Total changes: - 5

CVE-2022-24302 python-paramiko: Race condition in the write_private_key_file function

CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

High

Attack complexity

Local

Attack vector

None

Availability

High

Confidentiality

None

Integrity

None

Privileges required

Unchanged

Scope

None

User interaction

5.1

Base score

Exploitability score

Impact score

AND

product=python-paramiko-0 AND versionEndExcluding=2.4.2-8.el8ost

vendor=Red Hat Enterprise Linux AND product=openstack AND version=16.1

AND

product=python-paramiko-0 AND versionEndExcluding=2.4.2-8.el8ost

vendor=Red Hat Enterprise Linux AND product=openstack AND version=16.2

AND

product=python-paramiko-0 AND versionEndExcluding=2.4.3-3.el8ev

vendor=Red Hat Enterprise Linux AND product=enterprise_linux AND version=8

AND

product=python-paramiko-0 AND versionEndExcluding=2.4.3-3.el8ev

vendor=Red Hat Enterprise Linux AND product=rhev_manager AND version=4.4

AND

product=paramiko AND version=

vendor=Red Hat Enterprise Linux AND product=ansible_automation_platform AND version=2.0

AND