漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in Ubuntu wpa_supplicant that resulted in loading of arbitrary shared objects, which allows a local unprivileged attacker to escalate privileges to the user that wpa_supplicant runs as (usually root). Membership in the netdev group or access to the dbus interface of wpa_supplicant allow an unprivileged user to specify an arbitrary path to a module to be loaded by the wpa_supplicant process; other escalation paths might exist.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Vulnerability Type
对搜索路径元素未加控制
Vulnerability Title
wpa_supplicant 安全漏洞
Vulnerability Description
wpa_supplicant是一款跨平台的WPA请求程序。该程序支持WEP、WPA和WPA2等。 wpa_supplicant存在安全漏洞,该漏洞源于存在加载任意共享对象问题,这允许本地非特权攻击者将权限提升到以wpa_supplicant身份运行的用户。
CVSS Information
N/A
Vulnerability Type
N/A