CVE-2021-3710 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	6.5 MEDIUM	LOCAL	LOW	LOW	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N
canonical	CNA	6.5 MEDIUM	LOCAL	LOW	LOW	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 19%

Vendor	Product	Version
canonical	apport	2.14.1-0ubuntu1
canonical	apport	2.14.1-0ubuntu2
canonical	apport	2.14.1-0ubuntu3
canonical	apport	2.14.1-0ubuntu3.1
canonical	apport	2.14.1-0ubuntu3.2
canonical	apport	2.14.1-0ubuntu3.3
canonical	apport	2.14.1-0ubuntu3.4
canonical	apport	2.14.1-0ubuntu3.5
canonical	apport	2.14.1-0ubuntu3.6
canonical	apport	2.14.1-0ubuntu3.7
canonical	apport	2.14.1-0ubuntu3.8
canonical	apport	2.14.1-0ubuntu3.9
canonical	apport	2.14.1-0ubuntu3.10
canonical	apport	2.14.1-0ubuntu3.11
canonical	apport	2.14.1-0ubuntu3.12
canonical	apport	2.14.1-0ubuntu3.13
canonical	apport	2.14.1-0ubuntu3.14
canonical	apport	2.14.1-0ubuntu3.15
canonical	apport	2.14.1-0ubuntu3.16
canonical	apport	2.14.1-0ubuntu3.17
canonical	apport	2.14.1-0ubuntu3.18
canonical	apport	2.14.1-0ubuntu3.19
canonical	apport	2.14.1-0ubuntu3.20
canonical	apport	2.14.1-0ubuntu3.21
canonical	apport	2.14.1-0ubuntu3.23
canonical	apport	2.14.1-0ubuntu3.24
canonical	apport	2.14.1-0ubuntu3.25
canonical	apport	2.14.1-0ubuntu3.27
canonical	apport	2.14.1-0ubuntu3.28
canonical	apport	2.14.1-0ubuntu3.29
canonical	apport	2.14.1-0ubuntu3.29\+esm7
canonical	apport	2.20.1-0ubuntu1
canonical	apport	2.20.1-0ubuntu2
canonical	apport	2.20.1-0ubuntu2.1
canonical	apport	2.20.1-0ubuntu2.2
canonical	apport	2.20.1-0ubuntu2.4
canonical	apport	2.20.1-0ubuntu2.5
canonical	apport	2.20.1-0ubuntu2.6
canonical	apport	2.20.1-0ubuntu2.7
canonical	apport	2.20.1-0ubuntu2.8
canonical	apport	2.20.1-0ubuntu2.9
canonical	apport	2.20.1-0ubuntu2.10
canonical	apport	2.20.1-0ubuntu2.12
canonical	apport	2.20.1-0ubuntu2.13
canonical	apport	2.20.1-0ubuntu2.14
canonical	apport	2.20.1-0ubuntu2.15
canonical	apport	2.20.1-0ubuntu2.16
canonical	apport	2.20.1-0ubuntu2.17
canonical	apport	2.20.1-0ubuntu2.18
canonical	apport	2.20.1-0ubuntu2.19
canonical	apport	2.20.1-0ubuntu2.20
canonical	apport	2.20.1-0ubuntu2.21
canonical	apport	2.20.1-0ubuntu2.22
canonical	apport	2.20.1-0ubuntu2.23
canonical	apport	2.20.1-0ubuntu2.25
canonical	apport	2.20.1-0ubuntu2.26
canonical	apport	2.20.1-0ubuntu2.27
canonical	apport	2.20.1-0ubuntu2.28
canonical	apport	2.20.1-0ubuntu2.30
canonical	apport	2.20.1-0ubuntu2.30\+esm1
canonical	apport	2.20.9-0ubuntu1
canonical	apport	2.20.9-0ubuntu2
canonical	apport	2.20.9-0ubuntu3
canonical	apport	2.20.9-0ubuntu4
canonical	apport	2.20.9-0ubuntu5
canonical	apport	2.20.9-0ubuntu6
canonical	apport	2.20.9-0ubuntu7
canonical	apport	2.20.9-0ubuntu7.1
canonical	apport	2.20.9-0ubuntu7.2
canonical	apport	2.20.9-0ubuntu7.3
canonical	apport	2.20.9-0ubuntu7.4
canonical	apport	2.20.9-0ubuntu7.5
canonical	apport	2.20.9-0ubuntu7.6
canonical	apport	2.20.9-0ubuntu7.7
canonical	apport	2.20.9-0ubuntu7.8
canonical	apport	2.20.9-0ubuntu7.9
canonical	apport	2.20.9-0ubuntu7.10
canonical	apport	2.20.9-0ubuntu7.11
canonical	apport	2.20.9-0ubuntu7.12
canonical	apport	2.20.9-0ubuntu7.13
canonical	apport	2.20.9-0ubuntu7.14
canonical	apport	2.20.9-0ubuntu7.15
canonical	apport	2.20.9-0ubuntu7.16
canonical	apport	2.20.9-0ubuntu7.17
canonical	apport	2.20.9-0ubuntu7.18
canonical	apport	2.20.9-0ubuntu7.19
canonical	apport	2.20.9-0ubuntu7.20
canonical	apport	2.20.9-0ubuntu7.21
canonical	apport	2.20.9-0ubuntu7.23
canonical	apport	2.20.9-0ubuntu7.24
canonical	apport	2.20.11-0ubuntu8
canonical	apport	2.20.11-0ubuntu9
canonical	apport	2.20.11-0ubuntu10
canonical	apport	2.20.11-0ubuntu11
canonical	apport	2.20.11-0ubuntu12
canonical	apport	2.20.11-0ubuntu13
canonical	apport	2.20.11-0ubuntu14
canonical	apport	2.20.11-0ubuntu15
canonical	apport	2.20.11-0ubuntu16
canonical	apport	2.20.11-0ubuntu17
canonical	apport	2.20.11-0ubuntu18
canonical	apport	2.20.11-0ubuntu19
canonical	apport	2.20.11-0ubuntu20
canonical	apport	2.20.11-0ubuntu21
canonical	apport	2.20.11-0ubuntu22
canonical	apport	2.20.11-0ubuntu23
canonical	apport	2.20.11-0ubuntu24
canonical	apport	2.20.11-0ubuntu25
canonical	apport	2.20.11-0ubuntu26
canonical	apport	2.20.11-0ubuntu27
canonical	apport	2.20.11-0ubuntu27.2
canonical	apport	2.20.11-0ubuntu27.3
canonical	apport	2.20.11-0ubuntu27.4
canonical	apport	2.20.11-0ubuntu27.5
canonical	apport	2.20.11-0ubuntu27.6
canonical	apport	2.20.11-0ubuntu27.7
canonical	apport	2.20.11-0ubuntu27.8
canonical	apport	2.20.11-0ubuntu27.9
canonical	apport	2.20.11-0ubuntu27.10
canonical	apport	2.20.11-0ubuntu27.11
canonical	apport	2.20.11-0ubuntu27.12
canonical	apport	2.20.11-0ubuntu27.13
canonical	apport	2.20.11-0ubuntu27.14
canonical	apport	2.20.11-0ubuntu27.16
canonical	apport	2.20.11-0ubuntu27.17
canonical	apport	2.20.11-0ubuntu27.18
canonical	apport	2.20.11-0ubuntu28
canonical	apport	2.20.11-0ubuntu29
canonical	apport	2.20.11-0ubuntu30
canonical	apport	2.20.11-0ubuntu31
canonical	apport	2.20.11-0ubuntu32
canonical	apport	2.20.11-0ubuntu33
canonical	apport	2.20.11-0ubuntu34
canonical	apport	2.20.11-0ubuntu35
canonical	apport	2.20.11-0ubuntu36
canonical	apport	2.20.11-0ubuntu37
canonical	apport	2.20.11-0ubuntu38
canonical	apport	2.20.11-0ubuntu39
canonical	apport	2.20.11-0ubuntu40
canonical	apport	2.20.11-0ubuntu41
canonical	apport	2.20.11-0ubuntu42
canonical	apport	2.20.11-0ubuntu43
canonical	apport	2.20.11-0ubuntu44
canonical	apport	2.20.11-0ubuntu45
canonical	apport	2.20.11-0ubuntu46
canonical	apport	2.20.11-0ubuntu47
canonical	apport	2.20.11-0ubuntu48
canonical	apport	2.20.11-0ubuntu49
canonical	apport	2.20.11-0ubuntu50
canonical	apport	2.20.11-0ubuntu50.1
canonical	apport	2.20.11-0ubuntu50.2
canonical	apport	2.20.11-0ubuntu50.3
canonical	apport	2.20.11-0ubuntu50.5
canonical	apport	2.20.11-0ubuntu50.7
canonical	apport	2.20.11-0ubuntu51
canonical	apport	2.20.11-0ubuntu52
canonical	apport	2.20.11-0ubuntu53
canonical	apport	2.20.11-0ubuntu54
canonical	apport	2.20.11-0ubuntu55
canonical	apport	2.20.11-0ubuntu56
canonical	apport	2.20.11-0ubuntu57
canonical	apport	2.20.11-0ubuntu58
canonical	apport	2.20.11-0ubuntu59
canonical	apport	2.20.11-0ubuntu60
canonical	apport	2.20.11-0ubuntu61
canonical	apport	2.20.11-0ubuntu62
canonical	apport	2.20.11-0ubuntu63
canonical	apport	2.20.11-0ubuntu64
canonical	apport	2.20.11-0ubuntu65
canonical	apport	2.20.11-0ubuntu65.1

𝑥

= Vulnerable software versions

Ubuntu Releases

Ubuntu Product

Codename

apport

jammy	Fixed 2.20.11-0ubuntu69 released
impish	Fixed 2.20.11-0ubuntu69 released
hirsute	Fixed 2.20.11-0ubuntu65.3 released
focal	Fixed 2.20.11-0ubuntu27.20 released
bionic	Fixed 2.20.9-0ubuntu7.26 released
xenial	Fixed 2.20.1-0ubuntu2.30+esm2 released
trusty	Fixed 2.14.1-0ubuntu3.29+esm8 released

Known Exploits!

Common Weakness Enumeration

CWE-24 - Path Traversal: '../filedir'
The software uses external input to construct a pathname that should be within a restricted directory, but it does not properly neutralize "../" sequences that can resolve to a location that is outside of that directory.
CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
The software uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the software does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

References

https://bugs.launchpad.net/ubuntu/+source/apport/+bug/1933832

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3710

https://ubuntu.com/security/notices/USN-5077-1

https://ubuntu.com/security/notices/USN-5077-2

https://bugs.launchpad.net/ubuntu/+source/apport/+bug/1933832

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3710

https://ubuntu.com/security/notices/USN-5077-1

https://ubuntu.com/security/notices/USN-5077-2