CVE-2019-19522
Qualys Security Advisory - OpenBSD Authentication Bypass / Privilege Escalation
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
4Exploited in Wild
-Decision
Descriptions
OpenBSD 6.6, in a non-default configuration where S/Key or YubiKey authentication is enabled, allows local users to become root by leveraging membership in the auth group. This occurs because root's file can be written to /etc/skey or /var/db/yubikey, and need not be owned by root.
OpenBSD versión 6.6, en una configuración no predeterminada donde la autenticación S/Key o YubiKey está habilitada, permite a usuarios locales convertirse a root mediante el aprovechamiento de la membresía en el grupo de autenticación. Esto ocurre porque el archivo root puede ser escrito en /etc/skey o /var/db/yubikey, y no es necesario que sea propiedad de root.
Qualys has discovered that OpenBSD suffers from multiple authentication bypass and local privilege escalation vulnerabilities.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2019-12-03 CVE Reserved
- 2019-12-04 CVE Published
- 2019-12-05 First Exploit
- 2024-08-05 CVE Updated
- 2025-04-15 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-732: Incorrect Permission Assignment for Critical Resource
CAPEC
References (7)
| URL | Tag | Source |
|---|---|---|
| http://packetstormsecurity.com/files/155572/Qualys-Security-Advisory-OpenBSD-Authentication-Bypass-Privilege-Escalation.html | Third Party Advisory |
|
| http://seclists.org/fulldisclosure/2019/Dec/14 | Mailing List |
|
| URL | Date | SRC |
|---|---|---|
| https://packetstorm.news/files/id/155572 | 2019-12-05 | |
| http://www.openwall.com/lists/oss-security/2019/12/04/5 | 2024-08-05 | |
| https://seclists.org/bugtraq/2019/Dec/8 | 2024-08-05 | |
| https://www.openwall.com/lists/oss-security/2019/12/04/5 | 2024-08-05 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://www.openbsd.org/errata66.html | 2020-08-24 |