Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
virtualbox: missing sticky bit for /etc/vbox allows local root exploit for members of vboxusers group
Vulnerability Description
A Incorrect Default Permissions vulnerability in the packaging of virtualbox of openSUSE Factory allows local attackers in the vboxusers groupu to escalate to root. This issue affects: openSUSE Factory virtualbox version 6.1.20-1.1 and prior versions.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
缺省权限不正确
Vulnerability Title
SUSE openSUSE 安全漏洞
Vulnerability Description
openSUSE是德国SUSE公司的一套基于Linux的自由操作系统与开源社区项目。 openSUSE VirtualBox 存在安全漏洞,攻击者可利用该漏洞可以通过自动启动openSUSE VirtualBox来绕过限制,从而升级他的特权。
CVSS Information
N/A
Vulnerability Type
N/A