Lucene search

K
symantecSymantec Security ResponseSMNTC-111189
HistoryDec 11, 2019 - 12:00 a.m.

OpenBSD CVE-2019-19726 Local Privilege Escalation Vulnerability

2019-12-1100:00:00
Symantec Security Response
www.symantec.com
19

EPSS

0.001

Percentile

23.1%

Description

OpenBSD is prone to a local privilege escalation vulnerability. A local attacker can exploit this issue to gain elevated privileges. OpenBSD versions 6.1, 6.2, 6.5 and 6.6 are vulnerable. Other versions may also be affected.

Technologies Affected

  • OpenBSD Openbsd 6.1
  • OpenBSD Openbsd 6.2
  • OpenBSD Openbsd 6.5
  • OpenBSD Openbsd 6.6

Recommendations

Permit local access for trusted individuals only. Where possible, use restricted environments and restricted shells.
Ensure that only trusted users have local, interactive access to affected computers.

Updates are available. Please see the references or vendor advisory for more information.