漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Endpoint Security for Linux Threat Prevention (ENSLTP) privilege escalation vulnerability
Vulnerability Description
An unprivileged user can delete arbitrary files on a Linux system running ENSLTP 10.5.1, 10.5.0, and 10.2.3 Hotfix 1246778 and earlier. By exploiting a time of check to time of use (TOCTOU) race condition during a specific scanning sequence, the unprivileged user is able to perform a privilege escalation to delete arbitrary files.
CVSS Information
N/A
Vulnerability Type
允许符号链接跟随的竞争条件
Vulnerability Title
McAfee ENSLTP 权限许可和访问控制问题漏洞
Vulnerability Description
McAfee ENSLTP是美国迈克菲(McAfee)公司的一款基于Linux平台的终端安全防护终端。 McAfee ENSLTP 10.5.1版本、10.5.0版本和10.2.3 Hotfix 1246778及之前版本中存在提权漏洞。攻击者可利用该漏洞提升权限,进而删除任意文件。
CVSS Information
N/A
Vulnerability Type
N/A