1 results (0.001 seconds)
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 1
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 1CVE-2019-3691 – Local privilege escalation from user munge to root
https://notcve.org/view.php?id=CVE-2019-3691
23 Jan 2020 — A Symbolic Link (Symlink) Following vulnerability in the packaging of munge in SUSE Linux Enterprise Server 15; openSUSE Factory allowed local attackers to escalate privileges from user munge to root. This issue affects: SUSE Linux Enterprise Server 15 munge versions prior to 0.5.13-4.3.1. openSUSE Factory munge versions prior to 0.5.13-6.1. Un enlace simbólico (Symlink) Después de la vulnerabilidad en el empaquetado de munge en SUSE Linux Enterprise Server 15; openSUSE Factory permitió a los atacantes loca... • https://bugzilla.suse.com/show_bug.cgi?id=1155075 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •