3 matches found
CVE-2020-14976
GNS3 ubridge through 0.9.18 on macOS, as used in GNS3 server before 2.1.17, allows a local attacker to read arbitrary files because it handles configuration-file errors by printing the configuration file while executing in a setuid root context...
CVE-2020-14976
GNS3 ubridge through 0.9.18 on macOS, as used in GNS3 server before 2.1.17, allows a local attacker to read arbitrary files because it handles configuration-file errors by printing the configuration file while executing in a setuid root context...
CVE-2020-14976
GNS3 ubridge (ubridge) up to version 0.9.18 on macOS, used by GNS3 server before 2.1.17, allows a local attacker to read arbitrary files. The root cause is that configuration-file errors are printed while running in a setuid root context, exposing file contents. Public references indicate the aff...