{"id":"CVE-2020-35459","details":"An issue was discovered in ClusterLabs crmsh through 4.2.1. Local attackers able to call \"crm history\" (when \"crm\" is run) were able to execute commands via shell code injection to the crm history commandline, potentially allowing escalation of privileges.","aliases":["GHSA-99xx-83jm-h24m"],"modified":"2026-04-10T04:26:59.133226Z","published":"2021-01-12T15:15:13.953Z","related":["SUSE-SU-2021:0083-1","SUSE-SU-2021:0084-1","SUSE-SU-2021:0085-1","SUSE-SU-2021:0086-1","SUSE-SU-2021:0087-1","SUSE-SU-2021:0722-1","SUSE-SU-2021:0771-1","SUSE-SU-2021:0781-1","SUSE-SU-2021:0782-1","SUSE-SU-2021:0806-1","SUSE-SU-2021:0941-1","SUSE-SU-2021:0942-1","SUSE-SU-2021:0943-1","SUSE-SU-2021:2238-1","SUSE-SU-2021:2239-1","SUSE-SU-2021:2435-1","SUSE-SU-2021:3121-1","openSUSE-SU-2021:0055-1","openSUSE-SU-2021:0073-1","openSUSE-SU-2021:0410-1","openSUSE-SU-2021:0473-1","openSUSE-SU-2021:1087-1","openSUSE-SU-2021:2435-1","openSUSE-SU-2024:10700-1","openSUSE-SU-2024:12952-1"],"references":[{"type":"ADVISORY","url":"https://github.com/ClusterLabs/crmsh/releases"},{"type":"ADVISORY","url":"https://lists.debian.org/debian-lts-announce/2021/01/msg00021.html"},{"type":"REPORT","url":"https://bugzilla.suse.com/show_bug.cgi?id=1179999"},{"type":"FIX","url":"https://github.com/ClusterLabs/crmsh/blob/a403aa15f3ea575adfe5e43bf2a31c9f9094fcda/crmsh/history.py#L476"},{"type":"FIX","url":"http://www.openwall.com/lists/oss-security/2021/01/12/3"},{"type":"EVIDENCE","url":"https://www.openwall.com/lists/oss-security/2021/01/12/3"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/clusterlabs/crmsh","events":[{"introduced":"0"},{"last_affected":"bf7af3a6788f06b58239650093c06f5ababa51ad"}],"database_specific":{"versions":[{"introduced":"0"},{"last_affected":"4.2.1"}]}}],"versions":["2.0.0","2.1.0","2.2.0","2.2.0-rc1","2.2.0-rc2","2.2.0-rc3","2.3.0","2.3.1","3.0.0","4.0.0","4.1.0","4.2.0","4.2.1"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-35459.json","unresolved_ranges":[{"events":[{"introduced":"0"},{"last_affected":"9.0"}]}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}]}