An issue was discovered in TrouSerS through 0.3.14. If the tcsd daemon is started with root privileges, the tss user still has read and write access to the /etc/tcsd.conf file (which contains various settings related to this daemon).

References

bugzilla.redhat.com/show_bug.cgi?id=1870056

nvd.nist.gov/vuln/detail/CVE-2020-24331

www.cve.org/CVERecord?id=CVE-2020-24331

www.openwall.com/lists/oss-security/2020/08/14/1

cve 1

openvas 15

cvelist 1

ubuntucve 1

veracode 1

nessus 26

debiancve 1

cbl_mariner 3

nvd 1

prion 1

photon 3

fedora 1

osv 2

almalinux 1

rosalinux 1

freebsd 1

redhat 3

oraclelinux 1

rocky 1

mageia 1

ibm 1

cve

CVE-2020-24331

2020-08-13 17:15:13

openvas

Huawei EulerOS: Security Advisory for trousers (EulerOS-SA-2021-1425)

2021-03-05 00:00:00

Huawei EulerOS: Security Advisory for trousers (EulerOS-SA-2020-2122)

2020-09-29 00:00:00

Huawei EulerOS: Security Advisory for trousers (EulerOS-SA-2021-1522)

2021-03-05 00:00:00

cvelist

CVE-2020-24331

2020-08-13 16:19:02

ubuntucve

CVE-2020-24331

2020-08-13 00:00:00

veracode

Insecure Permissions

2021-05-21 14:01:41

nessus

EulerOS Virtualization 3.0.2.6 : trousers (EulerOS-SA-2021-1425)

2021-03-10 00:00:00

EulerOS 2.0 SP3 : trousers (EulerOS-SA-2020-2122)

2020-09-28 00:00:00

EulerOS 2.0 SP2 : trousers (EulerOS-SA-2020-2402)

2020-11-03 00:00:00

debiancve

CVE-2020-24331

2020-08-13 17:15:13

cbl_mariner

CVE-2020-24331 affecting package trousers 0.3.14-7

2020-10-08 18:09:52

CVE-2020-24331 affecting package trousers for versions less than 0.3.14-7

2024-03-19 17:21:46

CVE-2020-24331 affecting package trousers for versions less than 0.3.14-7

2022-04-09 06:51:41

nvd

CVE-2020-24331

2020-08-13 17:15:13

prion

Design/Logic Flaw

2020-08-13 17:15:00

photon

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2020-2.0-0277

2020-08-25 00:00:00

Important Photon OS Security Update - PHSA-2020-0131

2020-08-27 00:00:00

Important Photon OS Security Update - PHSA-2020-3.0-0131

2020-08-27 00:00:00

fedora

[SECURITY] Fedora 33 Update: trousers-0.3.14-4.fc33

2020-11-05 01:04:09

osv

Moderate: trousers security, bug fix, and enhancement update

2021-05-18 05:41:50

Moderate: trousers security, bug fix, and enhancement update

2021-05-18 05:41:50

almalinux

Moderate: trousers security, bug fix, and enhancement update

2021-05-18 05:41:50

rosalinux

Advisory ROSA-SA-2021-1989

2021-07-02 18:17:58

freebsd

security/trousers -- several vulnerabilities

2020-05-20 00:00:00

redhat

(RHSA-2021:1627) Moderate: trousers security, bug fix, and enhancement update

2021-05-18 05:41:50

(RHSA-2021:2461) Moderate: Red Hat Advanced Cluster Management 2.2.4 security and bug fix update

2021-06-16 15:19:08

(RHSA-2021:2121) Moderate: OpenShift Container Platform 4.7.13 bug fix and security update

2021-06-01 04:39:40

oraclelinux

trousers security, bug fix, and enhancement update

2021-05-25 00:00:00

rocky

trousers security, bug fix, and enhancement update

2021-05-18 05:41:50

mageia

Updated trousers packages fix security vulnerabilities

2021-06-29 01:51:23

ibm

Security Bulletin: Cloud Pak for Security uses packages that are vulnerable to several CVEs

2021-10-19 15:38:04

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

EPSS

0.001

Percentile

21.0%

JSON

Related for RH:CVE-2020-24331