Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The SSL certificate setup program (genSslCert.sh) in Standards Based Linux Instrumentation for Manageability (SBLIM) sblim-sfcb 1.3.2 allows local users to overwrite arbitrary files via a symlink attack on the (1) /var/tmp/key.pem, (2) /var/tmp/cert.pem, and (3) /var/tmp/ssl.cnf temporary files.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Standards Based Linux Instrumentation for Manageability sblim-sfcb 'genSslCert.sh'不安全临时文件创建漏洞
Vulnerability Description
Manageability (SBLIM) sblim-sfcb 1.3.2 版本的Standards Based Linux Instrumentation中的SSL凭证安装程序(genSslCert.sh)允许本地用户借助一个对(1)/var/tmp/key.pem,(2)/var/tmp/cert.pem和(3)/var/tmp/ssl.cnf临时文件的symlink攻击,重写任意文件。
CVSS Information
N/A
Vulnerability Type
N/A