Описание
Sun PC NetLink 1.0 through 1.2 does not properly set the access control list (ACL) for files and directories that use symbolic links and have been restored from backup, which could allow local or remote attackers to bypass intended access restrictions.
Ссылки
- Broken Link
- Broken Link
- Broken LinkThird Party AdvisoryVDB Entry
- Broken Link
- Broken Link
- Broken LinkThird Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1Версия от 1.0 (включая) до 1.2 (включая)
cpe:2.3:a:sun:solaris_pc_netlink:*:*:*:*:*:*:*:*
EPSS
Процентиль: 30%
0.00113
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-59
Связанные уязвимости
CVSS3: 7.5
github
больше 3 лет назад
Sun PC NetLink 1.0 through 1.2 does not properly set the access control list (ACL) for files and directories that use symbolic links and have been restored from backup, which could allow local or remote attackers to bypass intended access restrictions.
EPSS
Процентиль: 30%
0.00113
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-59