Privilege Escalation Vulnerability in Amazon AWS SSM Agent
CVE-2022-29527

7HIGH

Key Information:

Vendor

Amazon

Status
Amazon Ssm Agent
Vendor
CVE Published:
20 April 2022

What is CVE-2022-29527?

The Amazon AWS SSM Agent before version 3.1.1208.0 has a vulnerability that creates a world-writable sudoers file. This misconfiguration allows local attackers to inject malicious Sudo rules, potentially leading to unauthorized privilege escalation to root level. The issue arises from specific conditions associated with a race condition, making it critical for users to apply the latest security updates to mitigate risks.

References

https://github.com/aws/amazon-ssm-agent/releases/tag/3.1....
x_refsource_MISC
https://github.com/aws/amazon-ssm-agent/commit/0fe8ae99b2...
x_refsource_MISC
https://bugzilla.suse.com/show_bug.cgi?id=1196556
x_refsource_MISC

CVSS V3.1

Score:
7
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
High
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.