Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
SUSE-specific logrotate configuration allows escalation from mail user/group to root
Vulnerability Description
A UNIX Symbolic Link (Symlink) Following vulnerability in logrotate config in the exim package allowed privilege escalation from mail user/group to root.This issue affects Tumbleweed: from ? before 4.98.2-lp156.248.1.
CVSS Information
N/A
Vulnerability Type
CWE-61
Vulnerability Title
exim 安全漏洞
Vulnerability Description
Exim是Exim开源的一个运行于Unix系统中的开源消息传送代理(MTA),它主要负责邮件的路由、转发和投递。 exim 4.98.2-lp156.248.1之前版本存在安全漏洞,该漏洞源于logrotate配置存在符号链接跟随问题,可能导致权限提升。
CVSS Information
N/A
Vulnerability Type
N/A