Описание
An issue was discovered in Logpoint 7.1 before 7.1.2. The daily executed cron file clean_secbi_old_logs is writable by all users and is executed as root, leading to privilege escalation.
Уязвимые конфигурации
Конфигурация 1Версия от 7.1.0 (включая) до 7.1.2 (исключая)
cpe:2.3:a:logpoint:siem:*:*:*:*:*:*:*:*
EPSS
Процентиль: 12%
0.00041
Низкий
7.7 High
CVSS3
6.7 Medium
CVSS3
Дефекты
CWE-276
Связанные уязвимости
CVSS3: 7.7
github
почти 2 года назад
An issue was discovered in Logpoint 7.1 before 7.1.2. The daily executed cron file clean_secbi_old_logs is writable by all users and is executed as root, leading to privilege escalation.
EPSS
Процентиль: 12%
0.00041
Низкий
7.7 High
CVSS3
6.7 Medium
CVSS3
Дефекты
CWE-276