Lucene search

[email protected]NVD:CVE-2023-32183

HistoryJul 07, 2023 - 9:15 a.m.

CVE-2023-32183

2023-07-0709:15:10

CWE-276

[email protected]

web.nvd.nist.gov

opensuse

tumbleweed

hawk2

vulnerability

hacluster

root escalation

permissions

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS

Percentile

9.0%

JSON

Incorrect Default Permissions vulnerability in the openSUSE Tumbleweed hawk2 package allows users with access to the hacluster to escalate to root
This issue affects openSUSE Tumbleweed.

Affected configurations

Nvd

Node

opensusetumbleweedMatch-

VendorProductVersionCPE
opensusetumbleweed-cpe:2.3:o:opensuse:tumbleweed:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
opensuse	tumbleweed	-	cpe:2.3:o:opensuse:tumbleweed:-:::::::*

References

bugzilla.suse.com/show_bug.cgi?id=CVE-2023-32183

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS

Percentile

9.0%

JSON

Related for NVD:CVE-2023-32183

cvelist1 prion1 cve1