{"document":{"aggregate_severity":{"namespace":"https://www.suse.com/support/security/rating/","text":"critical"},"category":"csaf_vex","csaf_version":"2.0","distribution":{"text":"Copyright 2024 SUSE LLC. All rights reserved.","tlp":{"label":"WHITE","url":"https://www.first.org/tlp/"}},"lang":"en","notes":[{"category":"summary","text":"SUSE CVE-2021-36779","title":"Title"},{"category":"description","text":"A Missing Authentication for Critical Function vulnerability in SUSE Longhorn allows any workload in the cluster to execute any binary present in the image on the host without authentication. This issue affects: SUSE Longhorn longhorn versions prior to 1.1.3; longhorn versions prior to 1.2.3.","title":"Description of the CVE"},{"category":"legal_disclaimer","text":"CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).","title":"Terms of use"}],"publisher":{"category":"vendor","contact_details":"https://www.suse.com/support/security/contact/","name":"SUSE Product Security Team","namespace":"https://www.suse.com/"},"references":[{"category":"external","summary":"CVE-2021-36779","url":"https://www.suse.com/security/cve/CVE-2021-36779"},{"category":"external","summary":"SUSE Security Ratings","url":"https://www.suse.com/support/security/rating/"},{"category":"external","summary":"SUSE Bug 1191818 for CVE-2021-36779","url":"https://bugzilla.suse.com/1191818"},{"category":"external","summary":"Advisory link for GHSA-g358-m2wp-mhhx","url":"https://github.com/longhorn/longhorn/security/advisories//GHSA-g358-m2wp-mhhx"}],"title":"SUSE CVE CVE-2021-36779","tracking":{"current_release_date":"2025-02-17T05:17:31Z","generator":{"date":"2023-02-15T03:39:41Z","engine":{"name":"cve-database.git:bin/generate-csaf-vex.pl","version":"1"}},"id":"CVE-2021-36779","initial_release_date":"2023-02-15T03:39:41Z","revision_history":[{"date":"2023-02-15T03:39:41Z","number":"2","summary":"Current version"},{"date":"2025-01-01T04:20:09Z","number":"3","summary":"Current version"},{"date":"2025-02-15T04:54:49Z","number":"4","summary":"Current version"},{"date":"2025-02-17T05:17:31Z","number":"5","summary":"Current version"}],"status":"interim","version":"5"}}}