Lucene search
K

4 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 3:27 a.m.3 views

SUSE CVE-2022-25326

fscrypt through v0.3.2 creates a world-writable directory by default when setting up a filesystem, allowing unprivileged users to exhaust filesystem space. We recommend upgrading to fscrypt 0.3.3 or above and adjusting the permissions on existing fscrypt metadata directories where applicable...

5.5CVSS5.4AI score0.00129EPSS
Exploits0References2
OSV
OSV
added 2022/02/25 11:15 a.m.4 views

UBUNTU-CVE-2022-25328

The bashcompletion script for fscrypt allows injection of commands via crafted mountpoint paths, allowing privilege escalation under a specific set of circumstances. A local user who has control over mountpoint paths could potentially escalate their privileges if they create a malicious mountpoin...

7.3CVSS7.1AI score0.00199EPSS
Exploits0References4
OSV
OSV
added 2022/02/25 11:15 a.m.8 views

UBUNTU-CVE-2022-25327

The PAM module for fscrypt doesn't adequately validate fscrypt metadata files, allowing users to create malicious metadata files that prevent other users from logging in. A local user can cause a denial of service by creating a fscrypt metadata file that prevents other users from logging into the...

5.5CVSS5.8AI score0.0011EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2022/02/25 11:0 a.m.6 views

CVE-2022-25327 Local Denial of Service in fscrypt PAM module

The PAM module for fscrypt doesn't adequately validate fscrypt metadata files, allowing users to create malicious metadata files that prevent other users from logging in. A local user can cause a denial of service by creating a fscrypt metadata file that prevents other users from logging into the...

5.5CVSS5.3AI score0.0011EPSS
Exploits0References1
Rows per page
Query Builder