Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2020/02/13 8:44 p.m.27 views

CVE-2020-7221

A privilege escalation vulnerability was found in MariaDB, in the way it handled a setuid program during the installation process. A local MySQL user could abuse this flaw to escalate their privileges on the system, by gaining root privileges once the bash script mysqlinstalldb.sh is executed...

7.8CVSS2.7AI score0.0067EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2020/02/06 12:0 a.m.154 views

MariaDB 10.4.7 - 10.4.11 Privilege Escalation Vulnerability (Linux)

MariaDB is prone to a privilege escalation vulnerability. Copyright C 2020 Greenbone Networks GmbH SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software...

1.3AI score0.0067EPSS
Exploits1References1
OSV
OSV
added 2020/02/04 5:15 p.m.20 views

CVE-2020-7221

mysqlinstalldb in MariaDB 10.4.7 through 10.4.11 allows privilege escalation from the mysql user account to root because chown and chmod are performed unsafely, as demonstrated by a symlink attack on a chmod 04755 of authpamtooldir/authpamtool. NOTE: this does not affect the Oracle MySQL product,...

7.8CVSS6.5AI score
Exploits0References3
CVE
CVE
added 2020/02/04 4:57 p.m.100 views

CVE-2020-7221

CVE-2020-7221 affects MariaDB 10.4.7–10.4.11 where a vulnerability in mysql_install_db allows local privilege escalation from the mysql user to root due to unsafe handling of chown/chmod, demonstrated by a symlink attack on a chmod 04755 of auth_pam_tool_dir/auth_pam_tool. The issue does not affe...

7.8CVSS7.4AI score0.0067EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2020/02/04 4:57 p.m.23 views

CVE-2020-7221

mysqlinstalldb in MariaDB 10.4.7 through 10.4.11 allows privilege escalation from the mysql user account to root because chown and chmod are performed unsafely, as demonstrated by a symlink attack on a chmod 04755 of authpamtooldir/authpamtool. NOTE: this does not affect the Oracle MySQL product,...

7.5AI score0.0067EPSS
Exploits1References3
Rows per page
Query Builder