CVE-2019-19519

Опубликовано: 05 дек. 2019

Источник: nvd

CVSS3: 7.8

CVSS2: 4.6

EPSS Низкий

Описание

In OpenBSD 6.6, local users can use the su -L option to achieve any login class (often excluding root) because there is a logic error in the main function in su/su.c.

Ссылки

http://packetstormsecurity.com/files/155572/Qualys-Security-Advisory-OpenBSD-Authentication-Bypass-Privilege-Escalation.html
Third Party Advisory
http://seclists.org/fulldisclosure/2019/Dec/14
Third Party Advisory
http://www.openwall.com/lists/oss-security/2019/12/04/5
Exploit
Mailing List
Third Party Advisory
https://github.com/openbsd/src/blob/2dfc98f42e117c7605b52b5020b630d98601dc22/usr.bin/su/su.c#L210-L211
Third Party Advisory
https://seclists.org/bugtraq/2019/Dec/8
Exploit
Mailing List
Third Party Advisory
https://www.openbsd.org/errata66.html
Vendor Advisory
https://www.openwall.com/lists/oss-security/2019/12/04/5
Exploit
Mailing List
Third Party Advisory
http://packetstormsecurity.com/files/155572/Qualys-Security-Advisory-OpenBSD-Authentication-Bypass-Privilege-Escalation.html
Third Party Advisory
http://seclists.org/fulldisclosure/2019/Dec/14
Third Party Advisory
http://www.openwall.com/lists/oss-security/2019/12/04/5
Exploit
Mailing List
Third Party Advisory
https://github.com/openbsd/src/blob/2dfc98f42e117c7605b52b5020b630d98601dc22/usr.bin/su/su.c#L210-L211
Third Party Advisory
https://seclists.org/bugtraq/2019/Dec/8
Exploit
Mailing List
Third Party Advisory
https://www.openbsd.org/errata66.html
Vendor Advisory
https://www.openwall.com/lists/oss-security/2019/12/04/5
Exploit
Mailing List
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:openbsd:openbsd:6.6:*:*:*:*:*:*:*

EPSS

Процентиль: 28%

0.00099

Низкий

7.8 High

CVSS3

4.6 Medium

CVSS2

Дефекты

CWE-287

Связанные уязвимости

GHSA-83f7-7p5p-3hxm

github

больше 3 лет назад