Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2020-8015

Опубликовано: 16 окт. 2019
Источник: redhat
CVSS3: 7.8
EPSS Низкий

Описание

A UNIX Symbolic Link (Symlink) Following vulnerability in the packaging of exim in openSUSE Factory allows local attackers to escalate from user mail to root. This issue affects: openSUSE Factory exim versions prior to 4.93.0.4-3.1.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 5eximOut of support scope

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low
Дефект:
CWE-59
https://bugzilla.redhat.com/show_bug.cgi?id=1821773exim: Symlink Following could result in privilege escalation

EPSS

Процентиль: 35%
0.00143
Низкий

7.8 High

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2020-8015

CVSS3: 8.4
ubuntu
почти 6 лет назад

A UNIX Symbolic Link (Symlink) Following vulnerability in the packaging of exim in openSUSE Factory allows local attackers to escalate from user mail to root. This issue affects: openSUSE Factory exim versions prior to 4.93.0.4-3.1.

nvd логотип

CVE-2020-8015

CVSS3: 8.4
nvd
почти 6 лет назад

A UNIX Symbolic Link (Symlink) Following vulnerability in the packaging of exim in openSUSE Factory allows local attackers to escalate from user mail to root. This issue affects: openSUSE Factory exim versions prior to 4.93.0.4-3.1.

suse-cvrf логотип

openSUSE-SU-2020:0491-1

suse-cvrf
почти 6 лет назад

Security update for exim

github логотип

GHSA-rpgh-5p2m-vxqx

github
больше 3 лет назад

A UNIX Symbolic Link (Symlink) Following vulnerability in the packaging of exim in openSUSE Factory allows local attackers to escalate from user mail to root. This issue affects: openSUSE Factory exim versions prior to 4.93.0.4-3.1.

EPSS

Процентиль: 35%
0.00143
Низкий

7.8 High

CVSS3