Lucene search

CVE-2020-24330

🗓️ 13 Aug 2020 17:13:15Reported by mitreType

An issue in TrouSerS through 0.3.14, tcsd daemon fails to drop root gid privilege

Reporter	Title	Published	Views	Family All 70
veracode	Privilege Escalation	21 May 202114:01	–	veracode
nessus	SUSE SLES15 Security Update : trousers (SUSE-SU-2022:2798-1)	13 Aug 202200:00	–	nessus
nessus	SUSE SLES12 Security Update : trousers (SUSE-SU-2022:2800-1)	13 Aug 202200:00	–	nessus
nessus	EulerOS 2.0 SP3 : trousers (EulerOS-SA-2020-2122)	28 Sep 202000:00	–	nessus
nessus	EulerOS 2.0 SP2 : trousers (EulerOS-SA-2020-2402)	3 Nov 202000:00	–	nessus
nessus	EulerOS Virtualization 3.0.2.2 : trousers (EulerOS-SA-2021-2171)	6 Jul 202100:00	–	nessus
nessus	EulerOS Virtualization 3.0.6.6 : trousers (EulerOS-SA-2021-1522)	4 Mar 202100:00	–	nessus
nessus	EulerOS 2.0 SP5 : trousers (EulerOS-SA-2020-2301)	30 Oct 202000:00	–	nessus
nessus	Rocky Linux 8 : trousers (RLSA-2021:1627)	6 Nov 202300:00	–	nessus
nessus	Oracle Linux 8 : trousers (ELSA-2021-1627)	26 May 202100:00	–	nessus

Nvd

Node

trousers_project trousersRange≤0.3.14

Node

fedoraproject fedoraMatch33

Source	Link
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SSDL7COIFCZQMUBNAASNMKMX7W5JUHRD/
sourceforge	www.sourceforge.net/p/trousers/mailman/message/37015817/
openwall	www.openwall.com/lists/oss-security/2020/08/14/1
seclists	www.seclists.org/oss-sec/2020/q2/att-135/tcsd_fixes.patch
bugzilla	www.bugzilla.suse.com/show_bug.cgi

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

13 Aug 2020 17:15Current

7.5High risk

Vulners AI Score7.5

CVSS27.2

CVSS37.8

EPSS0.00057

CWE-269