Lucene search
K

7 matches found

NVD
NVD
added 2023/01/26 9:15 p.m.35 views

CVE-2020-36657

uptimed before 0.4.6-r1 on Gentoo allows local users with access to the uptimed user account to gain root privileges by creating a hard link within the /var/spool/uptimed directory, because there is an unsafe chown -R call...

7.8CVSS7.7AI score0.0041EPSS
Exploits1References2
Prion
Prion
added 2023/01/26 9:15 p.m.12 views

Hardcoded credentials

uptimed before 0.4.6-r1 on Gentoo allows local users with access to the uptimed user account to gain root privileges by creating a hard link within the /var/spool/uptimed directory, because there is an unsafe chown -R call...

4.3CVSS7.7AI score0.0041EPSS
Exploits1References2Affected Software1
UbuntuCve
UbuntuCve
added 2023/01/26 12:0 a.m.19 views

CVE-2020-36657

uptimed before 0.4.6-r1 on Gentoo allows local users with access to the uptimed user account to gain root privileges by creating a hard link within the /var/spool/uptimed directory, because there is an unsafe chown -R call...

7.8CVSS7.1AI score0.0041EPSS
Exploits1References2
Prion
Prion
added 2018/02/14 8:29 p.m.19 views

Hardcoded credentials

OpenRC opentmpfiles through 0.1.3, when the fs.protectedhardlinks sysctl is turned off, allows local users to obtain ownership of arbitrary files by creating a hard link inside a directory on which "chown -R" will be run...

2.1CVSS5.4AI score0.00411EPSS
Exploits0References1Affected Software1
UbuntuCve
UbuntuCve
added 2018/02/14 8:29 p.m.28 views

CVE-2017-18188

OpenRC opentmpfiles through 0.1.3, when the fs.protectedhardlinks sysctl is turned off, allows local users to obtain ownership of arbitrary files by creating a hard link inside a directory on which "chown -R" will be run...

5.5CVSS6.2AI score0.00411EPSS
Exploits0References2
NVD
NVD
added 2017/09/25 5:29 p.m.20 views

CVE-2017-14730

The init script in the Gentoo app-admin/logstash-bin package before 5.5.3 and 5.6.x before 5.6.1 has "chown -R" calls for user-writable directory trees, which allows local users to gain privileges by leveraging access to a $LSUSER account for creation of a hard link...

7.8CVSS7.7AI score0.00347EPSS
Exploits0References4
Gentoo Linux
Gentoo Linux
added 2017/09/17 12:0 a.m.44 views

GIMPS: Root privilege escalation

Background GIMPS, the Great Internet Mersenne Prime Search, is a software capable of find Mersenne Primes, which are used in cryptography. GIMPS is also used for hardware testing. Description It was discovered that Gentoo’s default GIMPS installation suffered from a privilege escalation...

7.3CVSS7.6AI score0.00268EPSS
Exploits0
Rows per page
Query Builder