VYPR
Unrated severityNVD Advisory· Published Sep 9, 2021· Updated Aug 3, 2024

Groovy Sandbox escape in Eclipse Keti

CVE-2021-32835

Description

Eclipse Keti is a service that was designed to protect RESTfuls API using Attribute Based Access Control (ABAC). In Keti a sandbox escape vulnerability may lead to post-authentication Remote Code execution. This vulnerability is known to exist in the latest commit at the time of writing this CVE (commit a1c8dbe). For more details see the referenced GHSL-2021-063.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Eclipse/Ketillm-create2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: <= a1c8dbe

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.