Language:
Severity: High
ID: 159144
File Name: ubuntu_USN-5338-1.nasl
Version: 1.9
Type: local
Agent: unix
Family: Ubuntu Local Security Checks
Published: 3/22/2022
Updated: 8/28/2024
Supported Sensors: Agentless Assessment, Continuous Assessment, Frictionless Assessment Agent, Frictionless Assessment AWS, Frictionless Assessment Azure, Nessus Agent, Nessus
Risk Factor: High
Score: 8.4
Risk Factor: High
Base Score: 9
Temporal Score: 7.4
Vector: CVSS2#AV:N/AC:L/Au:S/C:C/I:C/A:C
CVSS Score Source: CVE-2022-0435
Risk Factor: High
Base Score: 8.8
Temporal Score: 8.2
Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Temporal Vector: CVSS:3.0/E:F/RL:O/RC:C
CPE: p-cpe:/a:canonical:ubuntu_linux:linux-image-5.4.0-105-lowlatency, p-cpe:/a:canonical:ubuntu_linux:linux-image-5.4.0-105-generic, cpe:/o:canonical:ubuntu_linux:20.04:-:lts, p-cpe:/a:canonical:ubuntu_linux:linux-image-5.4.0-1073-azure, p-cpe:/a:canonical:ubuntu_linux:linux-image-5.4.0-1067-oracle, cpe:/o:canonical:ubuntu_linux:18.04:-:lts, p-cpe:/a:canonical:ubuntu_linux:linux-image-5.4.0-1056-raspi, p-cpe:/a:canonical:ubuntu_linux:linux-image-5.4.0-1073-azure-fde, p-cpe:/a:canonical:ubuntu_linux:linux-image-5.4.0-1059-kvm, p-cpe:/a:canonical:ubuntu_linux:linux-image-5.4.0-1069-aws, p-cpe:/a:canonical:ubuntu_linux:linux-image-5.4.0-1068-gcp, p-cpe:/a:canonical:ubuntu_linux:linux-image-5.4.0-1037-gkeop, p-cpe:/a:canonical:ubuntu_linux:linux-image-5.4.0-1018-ibm, p-cpe:/a:canonical:ubuntu_linux:linux-image-5.4.0-105-generic-lpae, p-cpe:/a:canonical:ubuntu_linux:linux-image-5.4.0-1066-gke
Required KB Items: Host/cpu, Host/Ubuntu, Host/Ubuntu/release, Host/Debian/dpkg-l
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 3/22/2022
Vulnerability Publication Date: 11/17/2021
Metasploit (Docker cgroups Container Escape)
CVE: CVE-2021-28711, CVE-2021-28712, CVE-2021-28713, CVE-2021-28714, CVE-2021-28715, CVE-2021-4135, CVE-2021-43976, CVE-2021-44733, CVE-2021-45095, CVE-2021-45480, CVE-2022-0435, CVE-2022-0492, CVE-2022-0516
USN: 5338-1