RSS   Vulnerabilities for 'LENS'   RSS

2022-01-10
 
CVE-2021-23154

CWE-78
 

 
In Lens prior to 5.3.4, custom helm chart configuration creates helm commands from string concatenation of provided arguments which are then executed in the user's shell. Arguments can be provided which cause arbitrary shell commands to run on the system.

 

 >>> Vendor: Mirantis 4 Products
Mirantis container runtime
LENS
Bored-agent
Container cloud lens extension


Copyright 2024, cxsecurity.com

 

Back to Top