{"dataType":"CVE_RECORD","dataVersion":"5.1","cveMetadata":{"cveId":"CVE-2024-5290","assignerOrgId":"cc1ad9ee-3454-478d-9317-d3e869d708bc","state":"PUBLISHED","assignerShortName":"canonical","dateReserved":"2024-05-23T21:10:21.160Z","datePublished":"2024-08-07T08:14:08.153Z","dateUpdated":"2024-09-18T15:39:53.818Z"},"containers":{"cna":{"problemTypes":[{"descriptions":[{"lang":"en","cweId":"CWE-427","description":"CWE-427 Uncontrolled Search Path Element","type":"CWE"}]}],"impacts":[{"capecId":"CAPEC-641","descriptions":[{"lang":"en","value":"CAPEC-641 DLL Side-Loading"}]}],"affected":[{"vendor":"Canonical Ltd.","product":"wpa_supplicant","platforms":["Linux"],"collectionURL":"https://launchpad.net/ubuntu/+source/","packageName":"wpa","modules":["runtime API to load OpenSC module or PKCS11 engine or module"],"programFiles":["src/crypto/tls_openssl.c"],"versions":[{"status":"affected","version":"2:2.10-15","lessThan":"2:2.10-21ubuntu0.1","versionType":"semver"},{"status":"affected","version":"2:2.9.0-21build1","lessThan":"2:2.10-6ubuntu2.1","versionType":"semver"},{"status":"affected","version":"2:2.9-1ubuntu2","lessThan":"2:2.9-1ubuntu4.4","versionType":"semver"},{"status":"affected","version":"2.4-0ubuntu10","lessThan":"2:2.6-15ubuntu2.8+esm1","versionType":"semver"},{"status":"affected","version":"2.4-0ubuntu3","lessThan":"2.4-0ubuntu6.8+esm1","versionType":"semver"},{"status":"affected","version":"2.1-0ubuntu1","lessThan":"2.1-0ubuntu1.7+esm5","versionType":"semver"}],"defaultStatus":"unaffected"}],"descriptions":[{"lang":"en","value":"An issue was discovered in Ubuntu wpa_supplicant that resulted in loading of arbitrary shared objects, which allows a local unprivileged attacker to escalate privileges to the user that wpa_supplicant runs as (usually root).\n\n\n\n\nMembership in the netdev group or access to the dbus interface of wpa_supplicant allow an unprivileged user to specify an arbitrary path to a module to be loaded by the wpa_supplicant process; other escalation paths might exist."}],"references":[{"url":"https://bugs.launchpad.net/ubuntu/+source/wpa/+bug/2067613"},{"url":"https://snyk.io/blog/abusing-ubuntu-root-privilege-escalation/"},{"url":"https://ubuntu.com/security/notices/USN-6945-1"}],"metrics":[{"format":"CVSS","scenarios":[{"lang":"en","value":"GENERAL"}],"cvssV3_1":{"version":"3.1","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH","baseSeverity":"HIGH","baseScore":8.8,"vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H"}}],"credits":[{"lang":"en","value":"Rory McNamara","type":"finder"},{"lang":"en","value":"Marc Deslauriers","type":"remediation developer"},{"lang":"en","value":"Sudhakar Verma","type":"remediation developer"},{"lang":"en","value":"Mark Esler","type":"coordinator"}],"source":{"discovery":"EXTERNAL"},"providerMetadata":{"orgId":"cc1ad9ee-3454-478d-9317-d3e869d708bc","shortName":"canonical","dateUpdated":"2024-09-11T15:45:47.115Z"}},"adp":[{"affected":[{"vendor":"w1.fi","product":"wpa_supplicant","cpes":["cpe:2.3:a:w1.fi:wpa_supplicant:*:*:*:*:*:*:*:*"],"defaultStatus":"unknown","versions":[{"version":"2:2.10-15","status":"affected","lessThan":"2:2.10-21ubuntu0.1","versionType":"semver"},{"version":"2:2.9.0-21build1","status":"affected","lessThan":"2:2.10-6ubuntu2.1","versionType":"semver"},{"version":"2:2.9-1ubuntu2","status":"affected","lessThan":"2:2.9-1ubuntu4.4","versionType":"semver"},{"version":"2.4-0ubuntu10","status":"affected","lessThan":"2:2.6-15ubuntu2.8+esm1","versionType":"semver"},{"version":"2.4-0ubuntu3","status":"affected","lessThan":"2.4-0ubuntu6.8+esm1","versionType":"semver"},{"version":"2.1-0ubuntu1","status":"affected","lessThan":"2.1-0ubuntu1.7+esm5","versionType":"semver"}]}],"metrics":[{"other":{"type":"ssvc","content":{"timestamp":"2024-09-18T15:37:32.036314Z","id":"CVE-2024-5290","options":[{"Exploitation":"poc"},{"Automatable":"no"},{"Technical Impact":"total"}],"role":"CISA Coordinator","version":"2.0.3"}}}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2024-09-18T15:39:53.818Z"}}]}}