Lucene search

K
cvelistRedhatCVELIST:CVE-2015-3202
HistoryJul 02, 2015 - 9:16 p.m.

CVE-2015-3202

2015-07-0221:16:00
redhat
www.cve.org
1

AI Score

6.2

Confidence

High

EPSS

0

Percentile

0.4%

fusermount in FUSE before 2.9.3-15 does not properly clear the environment before invoking (1) mount or (2) umount as root, which allows local users to write to arbitrary files via a crafted LIBMOUNT_MTAB environment variable that is used by mountโ€™s debugging feature.

References