Описание
The configuration initialization tool in OpenVPN 3 Linux v20 through v24 on Linux allows a local attacker to use symlinks pointing at an arbitrary directory which will change the ownership and permissions of that destination directory.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | needs-triage | |
| esm-infra/focal | DNE | |
| focal | DNE | |
| jammy | DNE | |
| noble | DNE | |
| oracular | DNE | |
| plucky | needs-triage | |
| questing | needs-triage | |
| upstream | needs-triage |
Показывать по
6.2 Medium
CVSS3
Связанные уязвимости
The configuration initialization tool in OpenVPN 3 Linux v20 through v24 on Linux allows a local attacker to use symlinks pointing at an arbitrary directory which will change the ownership and permissions of that destination directory.
The configuration initialization tool in OpenVPN 3 Linux v20 through v ...
The configuration initialization tool in OpenVPN 3 Linux v20 through v24 on Linux allows a local attacker to use symlinks pointing at an arbitrary directory which will change the ownership and permissions of that destination directory.
Уязвимость программного обеспечения для сетевого шифрования OpenVPN 3 Linux, связанная с неверным определением символических ссылок перед доступом к файлу, позволяющая нарушителю повысить свои привилегии и изменить права доступа к целевому каталогу
6.2 Medium
CVSS3