CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:L/Au:N/C:N/I:P/A:N
The sqlite3-ruby gem in the rubygem-sqlite3 package before
1.2.4-0.5.1 in SUSE Linux Enterprise (SLE) 11 SP1 uses weak
permissions for unspecified files, which allows local users
to gain privileges via unknown vectors.
Vendor | Product | Version | CPE |
---|---|---|---|
ruby | sqlite3-ruby | * | cpe:2.3:a:ruby:sqlite3-ruby:*:*:*:*:*:*:*:* |