Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
multipath-tools 0.7.7 through 0.9.x before 0.9.2 allows local users to obtain root access, as exploited in conjunction with CVE-2022-41974. Local users able to access /dev/shm can change symlinks in multipathd due to incorrect symlink handling, which could lead to controlled file writes outside of the /dev/shm directory. This could be used indirectly for local privilege escalation to root.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Red Hat device-mapper-multipath 后置链接漏洞
Vulnerability Description
Red Hat device-mapper-multipath是美国红帽(Red Hat)公司的一个设备映射器多路径。允许您将服务器节点和存储阵列之间的多个 I/O 路径配置到单个设备中。 Red Hat device-mapper-multipath 存在安全漏洞,该漏洞源于 multipathd 在 /dev/shm 中以 root 身份运行不安全。
CVSS Information
N/A
Vulnerability Type
N/A