| |
Vulnerability CVE-2021-42952
Published: 2022-02-25
| Description: |
All pervious versions before October 25, 2021 of Zepl Notebooks are affeced by a sandbox escape vulnerability. Upon launching Remote Code Execution from the Notebook, users can then use that to subsequently escape the running context sandbox and proceed to access internal Zepl assets including cloud metadata services. |
See advisories in our WLB2 database: | Topic | Author | Date |
High |
| Josh Sheppard | 17.02.2022 |
References: |
http://zepl.com
https://seclists.org/fulldisclosure/2022/Feb/32
|
|
|
Copyright 2024, cxsecurity.com
|
|
|
