Lucene search
+L

97 matches found

Github Security Blog
Github Security Blog
added 2025/06/06 3:30 p.m.9 views

Duplicate Advisory: users may append `root` to group listings

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-m65q-v92h-cm7q. This link is maintained to preserve external references. Original Description A flaw was found in the user's crate for Rust. This vulnerability allows privilege escalation via incorrect group...

7.1CVSS7.3AI score0.00166EPSS
Exploits0References8Affected Software1
OSV
OSV
added 2025/06/06 2:15 p.m.9 views

AZL-63848 CVE-2025-5791 affecting package kata-containers-cc for versions less than 3.2.0.azl2-7

A flaw was found in the user's crate for Rust. This vulnerability allows privilege escalation via incorrect group listing when a user or process has fewer than exactly 1024 groups, leading to the erroneous inclusion of the root group in the access list...

7.1CVSS5.7AI score0.00166EPSS
Exploits0References1
OSV
OSV
added 2025/06/06 2:15 p.m.7 views

AZL-63771 CVE-2025-5791 affecting package kata-containers-cc 3.15.0.aks0-7

A flaw was found in the user's crate for Rust. This vulnerability allows privilege escalation via incorrect group listing when a user or process has fewer than exactly 1024 groups, leading to the erroneous inclusion of the root group in the access list...

7.1CVSS5.7AI score0.00166EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/06/06 1:10 p.m.43 views

CVE-2025-5791 Users: `root` appended to group listings

A flaw was found in the user's crate for Rust. This vulnerability allows privilege escalation via incorrect group listing when a user or process has fewer than exactly 1024 groups, leading to the erroneous inclusion of the root group in the access list...

7.1CVSS0.00166EPSS
Exploits0References6
CVE
CVE
added 2025/06/06 1:10 p.m.101 views

CVE-2025-5791

The CVE-2025-5791 entry concerns the Rust users crate with privilege escalation via incorrect group listing when a process has fewer than 1024 groups, which can incorrectly include the root group in the access list. Affected component: the user’s Rust crate (rust-users). Local/exploit path is ind...

7.1CVSS7.1AI score0.00166EPSS
Exploits0References6
OSV
OSV
added 2025/01/15 12:0 p.m.5 views

RUSTSEC-2025-0040 `root` appended to group listings

Affected versions append root to group listings, unless the correct listing has exactly 1024 groups. This affects both: - The supplementary groups of a user - The group access list of the current process If the caller uses this information for access control, this may lead to privilege escalation...

7.1CVSS6.8AI score0.00166EPSS
Exploits0References3
RustSec
RustSec
added 2025/01/15 12:0 p.m.9 views

`root` appended to group listings

Affected versions append root to group listings, unless the correct listing has exactly 1024 groups. This affects both: - The supplementary groups of a user - The group access list of the current process If the caller uses this information for access control, this may lead to privilege escalation...

7.1CVSS6.8AI score0.00166EPSS
Exploits0Affected Software1
SUSE CVE
SUSE CVE
added 2023/02/15 5:37 a.m.8 views

SUSE CVE-2013-3713

The image creation configuration in aaabase before 16.26.1 for openSUSE 13.1 KDE adds the root user to the "users" group when installing from a live image, which allows local users to obtain sensitive information and possibly have other unspecified impacts, as demonstrated by reading /etc/shadow...

4.4CVSS6.5AI score0.00365EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2022/01/25 5:37 p.m.45 views

CVE-2022-0358

A flaw was found in the QEMU virtio-fs shared file system daemon virtiofsd implementation. This flaw is strictly related to CVE-2018-13405. A local guest user can create files in the directories shared by virtio-fs with unintended group ownership in a scenario where a directory is SGID to a certa...

7.8CVSS0.2AI score0.0101EPSS
Exploits2References3
Huntr
Huntr
added 2021/10/01 7:55 a.m.9 views

Improper Access Control in collectiveaccess/pawtucket2

Description After the previous patch fix, users can join the Root group by specifying http://PAWTUCKET-URL/pawtucket/index.php/LoginReg/joinGroup/groupcode/ Proof of Concept http://PAWTUCKET-URL/pawtucket/index.php/LoginReg/joinGroup/groupcode/ Impact Attackers can join the Root group without bei...

0.5AI score
Exploits0
RedHat Linux
RedHat Linux
added 2021/05/18 3:38 p.m.3 views

trousers: fails to drop the root gid privilege when no longer needed

An issue was discovered in TrouSerS through 0.3.14. If the tcsd daemon is started with root privileges instead of by the tss user, it fails to drop the root gid privilege when no longer needed...

7.8CVSS7.4AI score0.00486EPSS
Exploits1References5
NVD
NVD
added 2020/11/06 7:15 p.m.26 views

CVE-2020-3595

A vulnerability in Cisco SD-WAN Software could allow an authenticated, local attacker to elevate privileges to root group on the underlying operating system. The vulnerability is due to incorrect permissions being set when the affected command is executed. An attacker could exploit this...

7.8CVSS7.8AI score0.00283EPSS
Exploits0References1
Cisco
Cisco
added 2020/11/04 4:0 p.m.23 views

Cisco SD-WAN Software Privilege Escalation Vulnerability

A vulnerability in Cisco SD-WAN Software could allow an authenticated, local attacker to elevate privileges to root group on the underlying operating system. The vulnerability is due to incorrect permissions being set when the affected command is executed. An attacker could exploit this...

7.8CVSS7.8AI score0.00283EPSS
Exploits0References1
OSV
OSV
added 2020/08/13 5:15 p.m.1 views

DEBIAN-CVE-2020-24330

An issue was discovered in TrouSerS through 0.3.14. If the tcsd daemon is started with root privileges instead of by the tss user, it fails to drop the root gid privilege when no longer needed...

7.8CVSS7.6AI score0.00486EPSS
Exploits1References1
OSV
OSV
added 2018/08/23 7:29 p.m.5 views

DEBIAN-CVE-2018-6558

The pamfscrypt module in fscrypt before 0.2.4 may incorrectly restore primary and supplementary group IDs to the values associated with the root user, which allows attackers to gain privileges via a successful login through certain applications that use Linux-PAM aka pam...

6.5CVSS6.7AI score0.00624EPSS
Exploits0References1
Gentoo Linux
Gentoo Linux
added 2017/09/24 12:0 a.m.89 views

Postfix: Privilege escalation

Background Postfix is a mail server and an alternative to the widely-used Sendmail program. Description By default, Berkeley DB reads a DBCONFIG configuration file from the current working directory. This is an undocumented behavior. Impact A local attacker, by using a specially crafted DGCONFIG...

3.2AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2017/09/18 12:0 a.m.31 views

GLSA-201709-11 : GIMPS: Root privilege escalation

The remote host is affected by the vulnerability described in GLSA-201709-11 GIMPS: Root privilege escalation It was discovered that Gentoos default GIMPS installation suffered from a privilege escalation vulnerability in the init script. This script calls an unsafe chown -R command in checkconfi...

7.3CVSS7.4AI score0.00268EPSS
Exploits0References2
Gentoo Linux
Gentoo Linux
added 2017/09/17 12:0 a.m.44 views

GIMPS: Root privilege escalation

Background GIMPS, the Great Internet Mersenne Prime Search, is a software capable of find Mersenne Primes, which are used in cryptography. GIMPS is also used for hardware testing. Description It was discovered that Gentoo’s default GIMPS installation suffered from a privilege escalation...

7.3CVSS7.6AI score0.00268EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2017/07/09 12:0 a.m.147 views

MAN DB: Privilege escalation

Background MAN DB is a man replacement that utilizes BerkelyDB instead of flat files. Description The /var/cache/man directory as part of the MAN DB package has group permissions set to root. Impact A local user who does not belong to the root group, but has the ability to modify the /var/cache/m...

7.8CVSS7.4AI score0.01047EPSS
Exploits3
Cvelist
Cvelist
added 2016/07/02 2:0 p.m.17 views

CVE-2016-2867

IBM InfoSphere Streams before 4.0.1.2 and IBM Streams before 4.1.1.1 do not properly implement the runAsUser feature, which allows local users to obtain root group privileges via unspecified vectors...

6.5AI score0.00258EPSS
Exploits0References1
Rows per page
Query Builder