CVE-2022-41974 Fedoraproject — Exploit & Vulnerability Details HIGH

Parameter	Value
CVSS	7.8 (HIGH)
Affected Versions	0.7.0 — 0.9.2
Fixed In	0.9.2
Type	CWE-269 (Improper Privilege Management)
Vendor	Fedoraproject
Public PoC	Yes

multipath-tools 0.7.0 through 0.9.x before 0.9.2 allows local users to obtain root access, as exploited alone or in conjunction with CVE-2022-41973. Local users able to write to UNIX domain sockets can bypass access controls and manipulate the multipath setup. This can lead to local privilege escalation to root.

This occurs because an attacker can repeat a keyword, which is mishandled because arithmetic ADD is used instead of bitwise OR.

Attack Parameters

Attack Vector

Local

Requires local access

Attack Complexity

Low

Easy to exploit

Privileges Required

Low

Basic privileges needed

User Interaction

None

No user interaction needed

Impact Assessment

Confidentiality

High

Complete data leak

Integrity

High

Complete data modification

Availability

High

Complete denial of service

CVSS Vector v3.1

Weakness Type (CWE)

CWE-269 Improper Privilege Management

Vulnerable Products 4

Configuration	From (including)	Up to (excluding)
Opensvc Multipath-Tools cpe:2.3:a:opensvc:multipath-tools::::::::	`0.7.0`	`0.9.2`
Fedoraproject Fedora cpe:2.3:o:fedoraproject:fedora:36:::::::*	—	—
Debian Debian_Linux cpe:2.3:o:debian:debian_linux:10.0:::::::*	—	—
Debian Debian_Linux cpe:2.3:o:debian:debian_linux:11.0:::::::*	—	—