Lucene search
K

The vulnerability of the GNUMP3d streaming multimedia server in OpenSUSE Leap operating systems arises from incorrect handling of symbolic links before accessing files. This allows attackers to exploit their privileges.

🗓️ 10 Nov 2021 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType 
bdu_fstec
 bdu_fstec
🔗 bdu.fstec.ru👁 1 Views

GNUMP3d on OpenSUSE Leap mishandles symbolic links before file access, enabling privilege escalation.

Related
Detection
Refs
ReporterTitlePublishedViews
Family
CVE
CVE-2019-3697
24 Jan 202012:10
cve
Cvelist
CVE-2019-3697 Local privilege escalation from user gnump3d to root
24 Jan 202012:10
cvelist
EUVD
EUVD-2019-13332
7 Oct 202500:30
euvd
NVD
CVE-2019-3697
24 Jan 202012:15
nvd
OSV
CVE-2019-3697
24 Jan 202012:15
osv
Prion
Design/Logic Flaw
24 Jan 202012:15
prion
SUSE CVE
SUSE CVE-2019-3697
15 Feb 202304:17
susecve
Vulners
Node

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

10 Nov 2021 00:00Current
7.2High risk
Vulners AI Score7.2
CVSS 27.2
CVSS 37.7
EPSS0.00518
1