Lucene search
K

396 matches found

Cvelist
Cvelist
added 2024/04/18 2:40 p.m.33 views

CVE-2024-28189 Judge0 vulnerable to Sandbox Escape Patch Bypass via chown running on Symbolic Link

Judge0 is an open-source online code execution system. The application uses the UNIX chown command on an untrusted file within the sandbox. An attacker can abuse this by creating a symbolic link symlink to a file outside the sandbox, allowing the attacker to run chown on arbitrary files outside o...

10CVSS9.9AI score0.07211EPSS
Exploits2References4
Positive Technologies
Positive Technologies
added 2024/04/18 12:0 a.m.3 views

PT-2024-22322 · Judge0 · Judge0

Name of the Vulnerable Software and Affected Versions: Judge0 versions prior to 1.13.1 Description: The issue arises from the application's use of the UNIX chown command on an untrusted file within the sandbox. An attacker can exploit this by creating a symbolic link symlink to a file outside the...

10CVSS7.5AI score0.07211EPSS
Exploits2References16
BDU FSTEC
BDU FSTEC
added 2024/03/04 12:0 a.m.7 views

The vulnerability of the chown package on the Node.js software platform allows a malicious actor to gain unauthorized access to arbitrary directories.

The vulnerability of the chown package on the Node.js software platform is related to synchronization errors when using a shared resource „Race Condition“. Exploiting this vulnerability can allow an attacker to gain unauthorized access to arbitrary directories...

2.5CVSS6.8AI score0.00334EPSS
Exploits1References5Affected Software2
RedHat Linux
RedHat Linux
added 2024/02/01 12:39 p.m.54 views

Moderate: Red Hat Security Advisory: rpm security update

An update for rpm is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CV...

6.7CVSS6.7AI score0.00491EPSS
Exploits3References4
RedHat Linux
RedHat Linux
added 2024/01/30 1:30 p.m.54 views

Moderate: Red Hat Security Advisory: rpm security update

An update for rpm is now available for Red Hat Enterprise Linux 8.8 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

6.7CVSS6.7AI score0.00491EPSS
Exploits3References4
AlmaLinux
AlmaLinux
added 2024/01/25 12:0 a.m.80 views

Moderate: rpm security update

The RPM Package Manager RPM is a command-line driven package management system capable of installing, uninstalling, verifying, querying, and updating software packages. Security Fixes: rpm: TOCTOU race in checks for unsafe symlinks CVE-2021-35937 rpm: races with chown/chmod/capabilities calls...

6.7CVSS6.8AI score0.00491EPSS
Exploits3References8
OSV
OSV
added 2024/01/15 7:15 a.m.2 views

CVE-2020-36770

pkgpostinst in the Gentoo ebuild for Slurm through 22.05.3 unnecessarily calls chown to assign root's ownership on files in the live root filesystem. This could be exploited by the slurm user to become the owner of root-owned files...

9.8CVSS5.8AI score0.00373EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2024/01/15 12:0 a.m.4 views

PT-2024-10822 · Gentoo +1 · Gentoo +1

Name of the Vulnerable Software and Affected Versions: Slurm versions through 22.05.3 Description: The issue arises from the pkg postinst in the Gentoo ebuild for Slurm, which unnecessarily calls chown to assign root's ownership on files in the live root filesystem. This could be exploited by the...

9.8CVSS9.3AI score0.00373EPSS
Exploits1References5
OSV
OSV
added 2023/11/06 7:32 a.m.32 views

BIT-2020-7221

mysqlinstalldb in MariaDB 10.4.7 through 10.4.11 allows privilege escalation from the mysql user account to root because chown and chmod are performed unsafely, as demonstrated by a symlink attack on a chmod 04755 of authpamtooldir/authpamtool. NOTE: this does not affect the Oracle MySQL product,...

7.8CVSS6.7AI score0.0067EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2023/10/20 6:30 a.m.12 views

GHSA-CGF8-H3FP-H956 Pleaser privilege escalation vulnerability

please aka pleaser through 0.5.4 allows privilege escalation through the TIOCSTI and/or TIOCLINUX ioctl. If both TIOCSTI and TIOCLINUX are disabled, this cannot be exploited. Here is how to see it in action: $ cd "$mktemp -d" $ git clone --depth 1 https://gitlab.com/edneville/please.git $ cd...

8.5CVSS7.9AI score0.00292EPSS
Exploits1References6
OSV
OSV
added 2023/03/14 7:15 p.m.13 views

CVE-2023-28144

KDAB Hotspot 1.3.x and 1.4.x through 1.4.1, in a non-default configuration, allows privilege escalation because of race conditions involving symlinks and elevateperfprivileges.sh chown calls...

7CVSS7.3AI score
Exploits0References2
UbuntuCve
UbuntuCve
added 2023/03/14 7:15 p.m.20 views

CVE-2023-28144

KDAB Hotspot 1.3.x and 1.4.x through 1.4.1, in a non-default configuration, allows privilege escalation because of race conditions involving symlinks and elevateperfprivileges.sh chown calls...

7CVSS7AI score0.00288EPSS
Exploits1References4
CVE
CVE
added 2023/03/14 12:0 a.m.48 views

CVE-2023-28144

KDAB Hotspot 1.3.x and 1.4.x through 1.4.1, in a non-default configuration, are affected by a local privilege-escalation issue due to race conditions involving symlinks and elevate_perf_privileges.sh chown calls. The root cause is race conditions in file ownership changes, which can lead to eleva...

7CVSS7AI score0.00288EPSS
Exploits1References2Affected Software1
SUSE CVE
SUSE CVE
added 2023/02/15 6:9 a.m.7 views

SUSE CVE-2008-0732

The init script for Apache Geronimo on SUSE Linux follows symlinks when performing a chown operation, which might allow local users to obtain access to unspecified files or directories...

2.1CVSS6.7AI score0.00755EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 5:51 a.m.5 views

SUSE CVE-2011-3180

kiwi before 4.98.08, as used in SUSE Studio Onsite 1.2 before 1.2.1 and SUSE Studio Extension for System z 1.2 before 1.2.1, allows attackers to execute arbitrary commands via shell metacharacters in the path of an overlay file, related to chown...

7.5CVSS7.7AI score0.02578EPSS
Exploits1References4
SUSE CVE
SUSE CVE
added 2023/02/15 5:34 a.m.4 views

SUSE CVE-2013-6442

The ownerset function in smbcacls.c in smbcacls in Samba 4.0.x before 4.0.16 and 4.1.x before 4.1.6 removes an ACL during use of a --chown or --chgrp option, which allows remote attackers to bypass intended access restrictions in opportunistic circumstances by leveraging an unintended...

5.8CVSS7AI score0.04103EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2023/02/15 5:21 a.m.3 views

SUSE CVE-2015-1336

The daily mandb cleanup job in Man-db before 2.7.6.1-1 as packaged in Ubuntu and Debian allows local users with access to the man account to gain privileges via vectors involving insecure chown use...

7.8CVSS7.1AI score0.01047EPSS
Exploits3References3
SUSE CVE
SUSE CVE
added 2023/02/15 5:21 a.m.6 views

SUSE CVE-2015-1350

The VFS subsystem in the Linux kernel 3.x provides an incomplete set of requirements for setattr operations that underspecifies removing extended privilege attributes, which allows local users to cause a denial of service capability stripping via a failed invocation of a system call, as...

5.5CVSS6.2AI score0.00489EPSS
Exploits1References12
SUSE CVE
SUSE CVE
added 2023/02/15 5:19 a.m.2 views

SUSE CVE-2015-3339

Race condition in the preparebinprm function in fs/exec.c in the Linux kernel before 3.19.6 allows local users to gain privileges by executing a setuid program at a time instant when a chown to root is in progress, and the ownership is changed but the setuid bit is not yet stripped...

6.2CVSS6.7AI score0.00317EPSS
Exploits0References16
SUSE CVE
SUSE CVE
added 2023/02/15 4:44 a.m.3 views

SUSE CVE-2017-9525

In the cron package through 3.0pl1-128 on Debian, and through 3.0pl1-128ubuntu2 on Ubuntu, the postinst maintainer script allows for group-crontab-to-root privilege escalation via symlink attacks against unsafe usage of the chown and chmod programs...

6.9CVSS7.2AI score0.00551EPSS
Exploits0References3
Rows per page
Query Builder