Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2020-13696

Опубликовано: 08 июн. 2020
Источник: nvd
CVSS3: 4.4
CVSS2: 3.6
EPSS Низкий

Описание

An issue was discovered in LinuxTV xawtv before 3.107. The function dev_open() in v4l-conf.c does not perform sufficient checks to prevent an unprivileged caller of the program from opening unintended filesystem paths. This allows a local attacker with access to the v4l-conf setuid-root program to test for the existence of arbitrary files and to trigger an open on arbitrary files with mode O_RDWR. To achieve this, relative path components need to be added to the device path, as demonstrated by a v4l-conf -c /dev/../root/.bash_history command.

Ссылки

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:a:linuxtv:xawtv:*:*:*:*:*:*:*:*
Версия до 3.107 (исключая)
Конфигурация 2
cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
Конфигурация 3

Одно из

cpe:2.3:a:opensuse:backports_sle:15.0:sp1:*:*:*:*:*:*
cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*
Конфигурация 4

Одно из

cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*
Конфигурация 5
cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*

EPSS

Процентиль: 13%
0.00044
Низкий

4.4 Medium

CVSS3

3.6 Low

CVSS2

Дефекты

CWE-863

Связанные уязвимости

ubuntu логотип

CVE-2020-13696

CVSS3: 4.4
ubuntu
больше 5 лет назад

An issue was discovered in LinuxTV xawtv before 3.107. The function dev_open() in v4l-conf.c does not perform sufficient checks to prevent an unprivileged caller of the program from opening unintended filesystem paths. This allows a local attacker with access to the v4l-conf setuid-root program to test for the existence of arbitrary files and to trigger an open on arbitrary files with mode O_RDWR. To achieve this, relative path components need to be added to the device path, as demonstrated by a v4l-conf -c /dev/../root/.bash_history command.

debian логотип

CVE-2020-13696

CVSS3: 4.4
debian
больше 5 лет назад

An issue was discovered in LinuxTV xawtv before 3.107. The function de ...

suse-cvrf логотип

openSUSE-SU-2020:0784-1

suse-cvrf
больше 5 лет назад

Security update for xawtv

suse-cvrf логотип

SUSE-SU-2020:1712-1

suse-cvrf
больше 5 лет назад

Security update for xawtv

github логотип

GHSA-v59g-m57m-jww7

CVSS3: 4.4
github
больше 3 лет назад

An issue was discovered in LinuxTV xawtv before 3.107. The function dev_open() in v4l-conf.c does not perform sufficient checks to prevent an unprivileged caller of the program from opening unintended filesystem paths. This allows a local attacker with access to the v4l-conf setuid-root program to test for the existence of arbitrary files and to trigger an open on arbitrary files with mode O_RDWR. To achieve this, relative path components need to be added to the device path, as demonstrated by a v4l-conf -c /dev/../root/.bash_history command.

EPSS

Процентиль: 13%
0.00044
Низкий

4.4 Medium

CVSS3

3.6 Low

CVSS2

Дефекты

CWE-863