Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:16907
HistoryMay 02, 2019 - 5:29 a.m.

Privilege Escalation

2019-05-0205:29:33
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
17

6.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

openssh is vulnerable to privilege escalation. A use-after-free flaw allows an attacker to fully compromise a non-privileged pre-authentication process using a different flaw could possibly cause sshd to crash or execute arbitrary code with root privileges.

References

6.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C