Vulnerabilities > CVE-2021-36779 - Unspecified vulnerability in Linuxfoundation Longhorn

047910
CVSS 9.6 - CRITICAL
Attack vector
ADJACENT_NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
low complexity
linuxfoundation
critical

Summary

A Missing Authentication for Critical Function vulnerability in SUSE Longhorn allows any workload in the cluster to execute any binary present in the image on the host without authentication. This issue affects: SUSE Longhorn longhorn versions prior to 1.1.3; longhorn versions prior to 1.2.3.

Vulnerable Configurations

Part Description Count
Application
Linuxfoundation
1