Lucene search
K

3257 matches found

OSV
OSV
added 2022/04/01 11:15 p.m.2 views

DEBIAN-CVE-2021-3847

An unauthorized access to the execution of the setuid file with capabilities flaw in the Linux kernel OverlayFS subsystem was found in the way user copying a capable file from a nosuid mount into another mount. A local user could use this flaw to escalate their privileges on the system...

7.8CVSS8AI score0.00453EPSS
Exploits0References1
NVD
NVD
added 2022/04/01 11:15 p.m.26 views

CVE-2021-3847

An unauthorized access to the execution of the setuid file with capabilities flaw in the Linux kernel OverlayFS subsystem was found in the way user copying a capable file from a nosuid mount into another mount. A local user could use this flaw to escalate their privileges on the system...

7.8CVSS0.00453EPSS
Exploits0References2
OSV
OSV
added 2022/04/01 11:15 p.m.5 views

AZL-9301 CVE-2021-3847 affecting package kernel for versions less than 5.15.160.1-1

An unauthorized access to the execution of the setuid file with capabilities flaw in the Linux kernel OverlayFS subsystem was found in the way user copying a capable file from a nosuid mount into another mount. A local user could use this flaw to escalate their privileges on the system...

7.8CVSS7.5AI score0.00453EPSS
Exploits0References1
Prion
Prion
added 2022/04/01 11:15 p.m.32 views

Design/Logic Flaw

An unauthorized access to the execution of the setuid file with capabilities flaw in the Linux kernel OverlayFS subsystem was found in the way user copying a capable file from a nosuid mount into another mount. A local user could use this flaw to escalate their privileges on the system...

7.2CVSS7.3AI score0.00453EPSS
Exploits0References2Affected Software2
OSV
OSV
added 2022/04/01 11:15 p.m.8 views

UBUNTU-CVE-2021-3847

An unauthorized access to the execution of the setuid file with capabilities flaw in the Linux kernel OverlayFS subsystem was found in the way user copying a capable file from a nosuid mount into another mount. A local user could use this flaw to escalate their privileges on the system...

7.8CVSS7.3AI score0.00453EPSS
Exploits0References3
Cvelist
Cvelist
added 2022/04/01 10:17 p.m.39 views

CVE-2021-3847

An unauthorized access to the execution of the setuid file with capabilities flaw in the Linux kernel OverlayFS subsystem was found in the way user copying a capable file from a nosuid mount into another mount. A local user could use this flaw to escalate their privileges on the system...

7.6AI score0.00453EPSS
Exploits0References2
CVE
CVE
added 2022/04/01 10:17 p.m.312 views

CVE-2021-3847

CVE-2021-3847 describes a local privilege escalation in the Linux kernel OverlayFS subsystem. The flaw arises in the way a user copies a capable file from a nosuid mount to another mount, enabling unauthorized execution of setuid-capable files. The confirmed impact is that a local user can escala...

7.8CVSS7.3AI score0.00453EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2022/04/01 10:17 p.m.34 views

CVE-2021-3847

An unauthorized access to the execution of the setuid file with capabilities flaw in the Linux kernel OverlayFS subsystem was found in the way user copying a capable file from a nosuid mount into another mount. A local user could use this flaw to escalate their privileges on the system...

7.8CVSS8.1AI score0.00453EPSS
Exploits0
CNNVD
CNNVD
added 2022/04/01 12:0 a.m.4 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a flaw in the OverlayFS subsystem that has a setuid file execution capability. An attacker exploits the...

7.8CVSS7.9AI score0.00453EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2022/03/15 10:26 a.m.4 views

glibc: Off-by-one buffer overflow/underflow in getcwd()

A flaw was found in glibc. An off-by-one buffer overflow and underflow in getcwd may lead to memory corruption when the size of the buffer is exactly 1. A local attacker who can control the input buffer and size passed to getcwd in a setuid program could use this flaw to potentially execute...

7.8CVSS7.3AI score0.0072EPSS
Exploits1References5
Amazon
Amazon
added 2022/03/08 12:0 a.m.2 views

Medium: containerd

Issue Overview: containerd is an open source container runtime with an emphasis on simplicity, robustness and portability. A bug was found in containerd where container root directories and some plugins had insufficiently restricted permissions, allowing otherwise unprivileged Linux users to...

7.8CVSS7AI score0.00482EPSS
Exploits0
Veracode
Veracode
added 2022/02/25 12:5 a.m.28 views

Privilege Escalation

seatd is vulnerable to privilege escalation. seatd-launch allows removing files via a user-supplied socket pathname when setuid root is installed allowing attackers to elevate privileges...

9.8CVSS6.2AI score0.02076EPSS
Exploits0References7Affected Software1
ATTACKERKB
ATTACKERKB
added 2022/02/24 3:15 p.m.3 views

CVE-2022-25643

seatd-launch in seatd 0.6.x before 0.6.4 allows removing files with escalated privileges when installed setuid root. The attack vector is a user-supplied socket pathname...

9.8CVSS5.3AI score0.02076EPSS
Exploits0References7
OSV
OSV
added 2022/02/24 3:15 p.m.1 views

DEBIAN-CVE-2022-25643

seatd-launch in seatd 0.6.x before 0.6.4 allows removing files with escalated privileges when installed setuid root. The attack vector is a user-supplied socket pathname...

9.8CVSS8.2AI score0.02076EPSS
Exploits0References1
OSV
OSV
added 2022/02/24 3:15 p.m.1 views

UBUNTU-CVE-2022-25643

seatd-launch in seatd 0.6.x before 0.6.4 allows removing files with escalated privileges when installed setuid root. The attack vector is a user-supplied socket pathname...

9.8CVSS7.2AI score0.02076EPSS
Exploits0References5
CNNVD
CNNVD
added 2022/02/24 12:0 a.m.22 views

seatd-launch 权限许可和访问控制问题漏洞

Seatd is an administrative daemon. It is used to mediate access to shared devices graphics, input. seatd-launch A security vulnerability exists in seatd versions 0.6.x through 0.6.4, which stems from a lack of privilege restrictions in the software that allow files with escalated privileges to be...

9.8CVSS7.9AI score0.02076EPSS
Exploits0References6
CVE
CVE
added 2022/02/22 12:0 a.m.92 views

CVE-2022-25643

CVE-2022-25643 affects seatd-launch in seatd 0.6.x prior to 0.6.4. It allows removing files with escalated privileges when the binary is installed setuid root, with the attack vector being a user-supplied socket pathname. Public details in the provided document indicate the vulnerable condition a...

9.8CVSS9.3AI score0.02076EPSS
Exploits0References6Affected Software1
0day.today
0day.today
added 2022/02/18 12:0 a.m.112 views

Solaris/SPARC - setuid(0) + execve (/bin/ksh) Shellcode

/ sparcsolarisexec.c - Solaris/SPARC execve shellcode Copyright c 2022 Marco Ivaldi Pretty standard Solaris/SPARC setuid/execve shellcode. Tested on: SunOS 5.10 GenericVirtual sun4u sparc SUNW,SPARC-Enterprise / char sc = / Solaris/SPARC execve shellcode 12 + 48 = 60 bytes / / setuid0 /...

Exploits0
0day.today
0day.today
added 2022/02/18 12:0 a.m.131 views

Solaris/SPARC - setuid(0) + chmod (/bin/ksh) + exit(0) Shellcode

/ sparcsolarischmod.c - Solaris/SPARC chmod shellcode Copyright c 2022 Marco Ivaldi Solaris/SPARC setuid/chmod/exit shellcode. Tested on: SunOS 5.10 GenericVirtual sun4u sparc SUNW,SPARC-Enterprise / char sc = / Solaris/SPARC chmod shellcode 12 + 32 + 20 = 64 bytes / / setuid0 / "\x90\x08\x3f\xff...

Exploits0
OpenVAS
OpenVAS
added 2022/02/15 12:0 a.m.5 views

openSUSE: Security Advisory for permissions (openSUSE-SU-2022:0141-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References2
Rows per page
Query Builder