Lucene search
K

5 matches found

OSV
OSV
added 2024/01/15 7:15 a.m.2 views

CVE-2020-36770

pkgpostinst in the Gentoo ebuild for Slurm through 22.05.3 unnecessarily calls chown to assign root's ownership on files in the live root filesystem. This could be exploited by the slurm user to become the owner of root-owned files...

9.8CVSS5.8AI score0.00373EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2024/01/15 12:0 a.m.5 views

PT-2024-10822 · Gentoo +1 · Gentoo +1

Name of the Vulnerable Software and Affected Versions: Slurm versions through 22.05.3 Description: The issue arises from the pkg postinst in the Gentoo ebuild for Slurm, which unnecessarily calls chown to assign root's ownership on files in the live root filesystem. This could be exploited by the...

9.8CVSS9.3AI score0.00373EPSS
Exploits1References5
CNVD
CNVD
added 2018/12/12 12:0 a.m.4 views

F5 BIG-IP APM and BIG-IP APM Clients svpn elevation of privilege vulnerability

F5 BIG-IP APM and BIG-IP APM Clients are both products of F5 Corporation in the U.S. F5 BIG-IP APM is a suite of access and security solutions. the APM Client is a suite of APM client software. svpn is one of the private VPN components. An elevation of privilege vulnerability exists in F5 BIG-IP...

7CVSS7.3AI score0.00319EPSS
Exploits0References1
NVD
NVD
added 2018/08/17 12:29 p.m.22 views

CVE-2018-5546

The svpn and policyserver components of the F5 BIG-IP APM client prior to version 7.1.7.1 for Linux and macOS runs as a privileged process and can allow an unprivileged user to get ownership of files owned by root on the local client host. A malicious local unprivileged user may gain knowledge of...

7.8CVSS7.5AI score0.00453EPSS
Exploits1References3
exploitpack
exploitpack
added 2000/05/31 12:0 a.m.14 views

KDE 1.1.2 KApplication configfile - Local Privilege Escalation (1)

KDE 1.1.2 KApplication configfile - Local Privilege Escalation 1 source: https://www.securityfocus.com/bid/1291/info The KDE configuration-file management has a bug which could result in root compromise. Due to insecure creation of configuration rc files via KApplication-class, local users can...

0.5AI score
Exploits0
Rows per page
Query Builder