Описание
A UNIX Symbolic Link (Symlink) Following vulnerability in keylime of openSUSE Tumbleweed allows local attackers to escalate from the keylime user to root. This issue affects: openSUSE Tumbleweed keylime versions prior to 6.4.2-1.1.
Ссылки
- ExploitIssue TrackingVendor Advisory
- ExploitIssue TrackingVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 6.4.2-1.1 (исключая)
cpe:2.3:a:opensuse:tumbleweed:*:*:*:*:*:*:*:*
EPSS
Процентиль: 13%
0.00043
Низкий
7.1 High
CVSS3
7.8 High
CVSS3
Дефекты
CWE-59
CWE-59
Связанные уязвимости
CVSS3: 7.8
github
больше 3 лет назад
A UNIX Symbolic Link (Symlink) Following vulnerability in keylime of openSUSE Tumbleweed allows local attackers to escalate from the keylime user to root. This issue affects: openSUSE Tumbleweed keylime versions prior to 6.4.2-1.1.
EPSS
Процентиль: 13%
0.00043
Низкий
7.1 High
CVSS3
7.8 High
CVSS3
Дефекты
CWE-59
CWE-59