Lucene search
K

9 matches found

Tenable Nessus
Tenable Nessus
added 2020/06/01 12:0 a.m.41 views

openSUSE Security Update : trousers (openSUSE-2020-744)

This update for trousers fixes the following issues : - CVE-2019-18898: Fixed a local symlink attack where a rogue tss user could have gain ownership of arbitrary files in the system during installation/update of the trousers package bsc1157651. This update was imported from the...

7.8CVSS7.3AI score0.00482EPSS
Exploits1References2
NVD
NVD
added 2020/01/23 2:15 p.m.21 views

CVE-2019-18898

UNIX Symbolic Link Symlink Following vulnerability in the trousers package of SUSE Linux Enterprise Server 15 SP1; openSUSE Factory allowed local attackers escalate privileges from user tss to root. This issue affects: SUSE Linux Enterprise Server 15 SP1 trousers versions prior to 0.3.14-6.3.1...

7.8CVSS7.5AI score0.00482EPSS
Exploits1References2
CVE
CVE
added 2020/01/23 2:5 p.m.165 views

CVE-2019-18898

CVE-2019-18898 concerns a local symlink attack in the trousers package for SUSE/openSUSE, allowing a local attacker (tss user) to gain ownership of arbitrary files during installation/update. The issue affects SUSE Linux Enterprise Server 15 SP1 trousers versions prior to 0.3.14-6.3.1 and openSUS...

7.8CVSS7.4AI score0.00482EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2020/01/23 2:5 p.m.20 views

CVE-2019-18898 trousers: Local privilege escalation from tss to root

UNIX Symbolic Link Symlink Following vulnerability in the trousers package of SUSE Linux Enterprise Server 15 SP1; openSUSE Factory allowed local attackers escalate privileges from user tss to root. This issue affects: SUSE Linux Enterprise Server 15 SP1 trousers versions prior to 0.3.14-6.3.1...

7.7CVSS7.5AI score0.00482EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2020/01/15 12:0 a.m.25 views

openSUSE Security Update : trousers (openSUSE-2020-15)

This update for trousers fixes the following issues : - CVE-2019-18898: Fixed a local symlink attack where a rogue tss user could have gain ownership of arbitrary files in the system during installation/update of the trousers package bsc1157651. This update was imported from the...

7.8CVSS7.3AI score0.00482EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2020/01/14 12:0 a.m.23 views

openSUSE: Security Advisory for trousers (openSUSE-SU-2020:0015-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.8CVSS7.6AI score0.00482EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2019/12/30 9:8 p.m.22 views

CVE-2019-18898

UNIX Symbolic Link Symlink Following vulnerability in the trousers package of SUSE Linux Enterprise Server 15 SP1; openSUSE Factory allowed local attackers escalate privileges from user tss to root. This issue affects: SUSE Linux Enterprise Server 15 SP1 trousers versions prior to 0.3.14-6.3.1...

7.8CVSS5.2AI score0.00482EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2019/12/20 12:0 a.m.30 views

SUSE SLED15 / SLES15 Security Update : trousers (SUSE-SU-2019:3349-1)

This update for trousers fixes the following issues : CVE-2019-18898: Fixed a local symlink attack where a rogue tss user could have gain ownership of arbitrary files in the system during installation/update of the trousers package bsc1157651. Note that Tenable Network Security has extracted the...

7.8CVSS7.5AI score0.00482EPSS
Exploits1References4
OSV
OSV
added 2019/12/19 3:13 p.m.6 views

SUSE-SU-2019:3349-1 Security update for trousers

This update for trousers fixes the following issues: - CVE-2019-18898: Fixed a local symlink attack where a rogue tss user could have gain ownership of arbitrary files in the system during installation/update of the trousers package bsc1157651...

7.8CVSS6.8AI score0.00482EPSS
Exploits1References3
Rows per page
Query Builder