CVE-2022-29549 — HIGH (7.3)

Q: How severe is CVE-2022-29549?

CVE-2022-29549 has been rated HIGH with a CVSS base score of 7.3/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2022-29549?

Check the references section above for vendor advisories and patch information. Affected products include: Qualys Cloud Agent For Linux.

Vulnerability Description

An issue was discovered in Qualys Cloud Agent 4.8.0-49. It executes programs at various full pathnames without first making ownership and permission checks (e.g., to help ensure that a program was installed by root) and without integrity checks (e.g., a checksum comparison against known legitimate programs). Also, the vendor recommendation is to install this agent software with root privileges. Thus, privilege escalation is possible on systems where any of these pathnames is controlled by a non-root user. An example is /opt/firebird/bin/isql, where the /opt/firebird directory is often owned by the firebird user.

CVSS Score

7.3

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Qualys	Cloud Agent For Linux	< 2.5.548.2

Related Weaknesses (CWE)

CWE-354

References

http://packetstormsecurity.com/files/168367/Qualys-Cloud-Agent-Arbitrary-Code-ExThird Party Advisory
http://seclists.org/fulldisclosure/2022/Sep/10Mailing ListThird Party Advisory
http://software.firstworks.com/p/getting-started-with-firebird.htmlNot Applicable
https://blog.qualys.com/product-tech/2022/08/15/qualys-security-updates-cloud-agVendor Advisory
https://blog.qualys.com/vulnerabilities-threat-researchVendor Advisory
http://packetstormsecurity.com/files/168367/Qualys-Cloud-Agent-Arbitrary-Code-ExThird Party Advisory
http://seclists.org/fulldisclosure/2022/Sep/10Mailing ListThird Party Advisory
http://software.firstworks.com/p/getting-started-with-firebird.htmlNot Applicable
https://blog.qualys.com/product-tech/2022/08/15/qualys-security-updates-cloud-agVendor Advisory
https://blog.qualys.com/vulnerabilities-threat-researchVendor Advisory

FAQ

What is CVE-2022-29549?

CVE-2022-29549 is a vulnerability with a CVSS score of 7.3 (HIGH). An issue was discovered in Qualys Cloud Agent 4.8.0-49. It executes programs at various full pathnames without first making ownership and permission checks (e.g., to help ensure that a program was ins...

How severe is CVE-2022-29549?

CVE-2022-29549 has been rated HIGH with a CVSS base score of 7.3/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2022-29549?

Check the references section above for vendor advisories and patch information. Affected products include: Qualys Cloud Agent For Linux.