Описание
World-writable permissions on the /tmp/tmate/sessions directory in tmate-ssh-server 2.3.0 allow a local attacker to compromise the integrity of session handling, or obtain the read-write session ID from a read-only session symlink in this directory.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | DNE | |
| devel | needed | |
| esm-apps/jammy | needed | |
| esm-apps/noble | needed | |
| esm-infra/focal | DNE | |
| focal | DNE | |
| hirsute | ignored | end of life |
| impish | ignored | end of life |
| jammy | needed | |
| kinetic | ignored | end of life, was needed |
Показывать по
4.4 Medium
CVSS2
7 High
CVSS3
Связанные уязвимости
World-writable permissions on the /tmp/tmate/sessions directory in tmate-ssh-server 2.3.0 allow a local attacker to compromise the integrity of session handling, or obtain the read-write session ID from a read-only session symlink in this directory.
World-writable permissions on the /tmp/tmate/sessions directory in tma ...
World-writable permissions on the /tmp/tmate/sessions directory in tmate-ssh-server 2.3.0 allow a local attacker to compromise the integrity of session handling, or obtain the read-write session ID from a read-only session symlink in this directory.
4.4 Medium
CVSS2
7 High
CVSS3