CVE-2023-41915

Опубликовано: 10 сент. 2023

Источник: redhat

CVSS3: 8.1

Описание

OpenPMIx PMIx before 4.2.6 and 5.0.x before 5.0.1 allows attackers to obtain ownership of arbitrary files via a race condition during execution of library code with UID 0.

OpenPMIx PMIx is vulnerable to a race condition during execution of library code with UID 0, which allows attackers to obtain ownership of arbitrary files.

Ссылки на источники

Дополнительная информация

Статус:

Important

Дефект:

CWE-362

https://bugzilla.redhat.com/show_bug.cgi?id=2238898pmix: race condition allows attackers to obtain ownership of arbitrary files

8.1 High

CVSS3

Связанные уязвимости

CVE-2023-41915

CVSS3: 8.1

ubuntu

почти 2 года назад

OpenPMIx PMIx before 4.2.6 and 5.0.x before 5.0.1 allows attackers to obtain ownership of arbitrary files via a race condition during execution of library code with UID 0.

CVE-2023-41915

CVSS3: 8.1

nvd

почти 2 года назад

OpenPMIx PMIx before 4.2.6 and 5.0.x before 5.0.1 allows attackers to obtain ownership of arbitrary files via a race condition during execution of library code with UID 0.

CVE-2023-41915

CVSS3: 8.1

msrc

почти 2 года назад

Описание отсутствует

CVE-2023-41915

CVSS3: 8.1

debian

почти 2 года назад

OpenPMIx PMIx before 4.2.6 and 5.0.x before 5.0.1 allows attackers to ...

SUSE-SU-2023:3859-1

suse-cvrf

больше 1 года назад

Security update for pmix

8.1 High

CVSS3