Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Local privilege escalation from user news to root in the packaging of inn
Vulnerability Description
The packaging of inn on SUSE Linux Enterprise Server 11; openSUSE Factory, Leap 15.1 allows local attackers to escalate from user inn to root via symlink attacks. This issue affects: SUSE Linux Enterprise Server 11 inn version 2.4.2-170.21.3.1 and prior versions. openSUSE Factory inn version 2.6.2-2.2 and prior versions. openSUSE Leap 15.1 inn version 2.5.4-lp151.2.47 and prior versions.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Vulnerability Type
在文件访问前对链接解析不恰当(链接跟随)
Vulnerability Title
多款 SUSE 产品inn后置链接漏洞
Vulnerability Description
SUSE Linux Enterprise Server和openSUSE Leap都是德国SUSE公司的产品。SUSE Linux Enterprise Server是一套企业服务器版Linux操作系统。openSUSE Leap是一种全新的openSUSE构建方式和一种新型的混合 Linux 发行版。 SUSE inn 2.4.2-170.21.3.1及之前版本、2.6.2-2.2及之前版本和2.5.4-lp151.2.47及之前版本中存在后置链接漏洞。本地攻击者可借助符号链接攻击利用该漏洞提升权限至
CVSS Information
N/A
Vulnerability Type
N/A