Lucene search
K

6 matches found

OSV
OSV
added 2019/12/18 4:15 p.m.9 views

CVE-2019-19882

shadow 4.8, in certain circumstances affecting at least Gentoo, Arch Linux, and Void Linux, allows local users to obtain root access because setuid programs are misconfigured. Specifically, this affects shadow 4.8 when compiled using --with-libpam but without explicitly passing...

7.8CVSS6.7AI score
Exploits0References6
NVD
NVD
added 2019/12/18 4:15 p.m.12 views

CVE-2019-19882

shadow 4.8, in certain circumstances affecting at least Gentoo, Arch Linux, and Void Linux, allows local users to obtain root access because setuid programs are misconfigured. Specifically, this affects shadow 4.8 when compiled using --with-libpam but without explicitly passing...

7.8CVSS7.5AI score0.00495EPSS
Exploits1References6
CVE
CVE
added 2019/12/18 3:7 p.m.74 views

CVE-2019-19882

CVE-2019-19882 affects Shadow 4.8 when built with --with-libpam but without --disable-account-tools-setuid and without a PAM config compatible with setuid tools, enabling local users to escalate to root via account-management utilities (groupadd, groupdel, groupmod, useradd, userdel, usermod). Th...

7.8CVSS7.5AI score0.00495EPSS
Exploits1References6Affected Software1
Cvelist
Cvelist
added 2019/12/18 3:7 p.m.18 views

CVE-2019-19882

shadow 4.8, in certain circumstances affecting at least Gentoo, Arch Linux, and Void Linux, allows local users to obtain root access because setuid programs are misconfigured. Specifically, this affects shadow 4.8 when compiled using --with-libpam but without explicitly passing...

7.5AI score0.00495EPSS
Exploits1References6
Debian CVE
Debian CVE
added 2019/12/18 3:7 p.m.14 views

CVE-2019-19882

shadow 4.8, in certain circumstances affecting at least Gentoo, Arch Linux, and Void Linux, allows local users to obtain root access because setuid programs are misconfigured. Specifically, this affects shadow 4.8 when compiled using --with-libpam but without explicitly passing...

7.8CVSS7.7AI score0.00495EPSS
Exploits1
Symantec
Symantec
added 2019/12/17 12:0 a.m.23 views

Shadow CVE-2019-19882 Multiple Local Privilege Escalation Vulnerabilities

Description Shadow is prone to multiple local privilege-escalation vulnerabilities. A local attacker can exploit these issues to gain elevated privileges. Shadow 4.8 is vulnerable; other versions may also be affected. Technologies Affected Shadow-Maint Shadow 4.8 Recommendations Permit local acce...

6.9CVSS2.3AI score0.00495EPSS
Exploits1References6Affected Software1
Rows per page
Query Builder