Lucene search

K
prionPRIOn knowledge basePRION:CVE-2021-25321
HistoryJun 30, 2021 - 9:15 a.m.

Design/Logic Flaw

2021-06-3009:15:00
PRIOn knowledge base
www.prio-n.com
6

7.5 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

A UNIX Symbolic Link (Symlink) Following vulnerability in arpwatch of SUSE Linux Enterprise Server 11-SP4-LTSS, SUSE Manager Server 4.0, SUSE OpenStack Cloud Crowbar 9; openSUSE Factory, Leap 15.2 allows local attackers with control of the runtime user to run arpwatch as to escalate to root upon the next restart of arpwatch. This issue affects: SUSE Linux Enterprise Server 11-SP4-LTSS arpwatch versions prior to 2.1a15. SUSE Manager Server 4.0 arpwatch versions prior to 2.1a15. SUSE OpenStack Cloud Crowbar 9 arpwatch versions prior to 2.1a15. openSUSE Factory arpwatch version 2.1a15-169.5 and prior versions. openSUSE Leap 15.2 arpwatch version 2.1a15-lp152.5.5 and prior versions.

7.5 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%