Описание
cci_dir in IBM U2 UniVerse 10.0.0.9 and earlier creates hard links and unlinks files as root, which allows local users to gain privileges by deleting and overwriting arbitrary files.
Ссылки
- Broken LinkExploitVendor Advisory
- Mailing List
- Broken LinkExploitVendor Advisory
- Mailing List
Уязвимые конфигурации
Конфигурация 1Версия до 10.0.0.9 (включая)
cpe:2.3:a:ibm:u2_universe:*:*:*:*:*:*:*:*
EPSS
Процентиль: 6%
0.00028
Низкий
7.8 High
CVSS3
4.6 Medium
CVSS2
Дефекты
CWE-59
Связанные уязвимости
CVSS3: 7.8
github
больше 3 лет назад
cci_dir in IBM U2 UniVerse 10.0.0.9 and earlier creates hard links and unlinks files as root, which allows local users to gain privileges by deleting and overwriting arbitrary files.
EPSS
Процентиль: 6%
0.00028
Низкий
7.8 High
CVSS3
4.6 Medium
CVSS2
Дефекты
CWE-59