EPSS
Percentile
36.0%
Sera 1.2 stores the user’s login password in plain text in their home directory. This makes privilege escalation trivial and also exposes the user and system keychains to local attacks.
m4.rkw.io/blog/cve201715918-sera-12-local-root-privesc-and-password-disclosure.html
www.exploit-db.com/exploits/43221/