CVE-2020-24330

Опубликовано: 02 сент. 2020

Источник: redhat

CVSS3: 7.8

EPSS Низкий

Описание

An issue was discovered in TrouSerS through 0.3.14. If the tcsd daemon is started with root privileges instead of by the tss user, it fails to drop the root gid privilege when no longer needed.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 5	trousers	Out of support scope
Red Hat Enterprise Linux 6	trousers	Out of support scope
Red Hat Enterprise Linux 7	trousers	Fix deferred
Red Hat Enterprise Linux 8	trousers	Fixed	RHSA-2021:1627	18.05.2021

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low

Дефект:

CWE-271

https://bugzilla.redhat.com/show_bug.cgi?id=1870054trousers: fails to drop the root gid privilege when no longer needed

EPSS

Процентиль: 41%

0.0019

Низкий

7.8 High

CVSS3

Связанные уязвимости

CVE-2020-24330

CVSS3: 7.8

ubuntu

больше 5 лет назад

An issue was discovered in TrouSerS through 0.3.14. If the tcsd daemon is started with root privileges instead of by the tss user, it fails to drop the root gid privilege when no longer needed.

CVE-2020-24330

CVSS3: 7.8

nvd

больше 5 лет назад

An issue was discovered in TrouSerS through 0.3.14. If the tcsd daemon is started with root privileges instead of by the tss user, it fails to drop the root gid privilege when no longer needed.

CVE-2020-24330

CVSS3: 7.8

msrc

больше 5 лет назад

An issue was discovered in TrouSerS through 0.3.14. If the tcsd daemon is started with root privileges instead of by the tss user it fails to drop the root gid privilege when no longer needed.

CVE-2020-24330

CVSS3: 7.8

debian

больше 5 лет назад

An issue was discovered in TrouSerS through 0.3.14. If the tcsd daemon ...

SUSE-SU-2022:2800-1

suse-cvrf

больше 3 лет назад

Security update for trousers

EPSS

Процентиль: 41%

0.0019

Низкий

7.8 High

CVSS3