Описание
By exploiting a time of check to time of use (TOCTOU) race condition during the Endpoint Security for Linux Threat Prevention and Firewall (ENSL TP/FW) installation process, a local user can perform a privilege escalation attack to obtain administrator privileges for the purpose of executing arbitrary code through insecure use of predictable temporary file locations.
Уязвимые конфигурации
EPSS
8.2 High
CVSS3
7 High
CVSS3
6.9 Medium
CVSS2
Дефекты
Связанные уязвимости
By exploiting a time of check to time of use (TOCTOU) race condition during the Endpoint Security for Linux Threat Prevention and Firewall (ENSL TP/FW) installation process, a local user can perform a privilege escalation attack to obtain administrator privileges for the purpose of executing arbitrary code through insecure use of predictable temporary file locations.
EPSS
8.2 High
CVSS3
7 High
CVSS3
6.9 Medium
CVSS2