CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 1CVE-2019-3697 – Local privilege escalation from user gnump3d to root
https://notcve.org/view.php?id=CVE-2019-3697
24 Jan 2020 — UNIX Symbolic Link (Symlink) Following vulnerability in the packaging of gnump3d in openSUSE Leap 15.1 allows local attackers to escalate from user gnump3d to root. This issue affects: openSUSE Leap 15.1 gnump3d version 3.0-lp151.2.1 and prior versions. Una vulnerabilidad de tipo UNIX Symbolic Link (Symlink) Following en el empaquetado de gnump3d en openSUSE Leap versión 15.1, permite a atacantes locales escalar desde un usuario gnump3d a root. Este problema afecta a: gnump3d versión 3.0-lp151.2.1 y version... • https://bugzilla.suse.com/show_bug.cgi?id=1154229 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •
CVSS: 5.5EPSS: 0%CPEs: 8EXPL: 0CVE-2005-3349
https://notcve.org/view.php?id=CVE-2005-3349
18 Nov 2005 — GNU Gnump3d before 2.9.8 allows local users to modify or delete arbitrary files via a symlink attack on the index.lok temporary file. • http://secunia.com/advisories/17646 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •
CVSS: 7.5EPSS: 0%CPEs: 8EXPL: 0CVE-2005-3355
https://notcve.org/view.php?id=CVE-2005-3355
18 Nov 2005 — Directory traversal vulnerability in GNU Gnump3d before 2.9.8 has unknown impact via "CGI parameters, and cookie values". • http://secunia.com/advisories/17646 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •