CVE-2020-14976 - CERT CVE
ID CVE-2020-14976
Sažetak GNS3 ubridge through 0.9.18 on macOS, as used in GNS3 server before 2.1.17, allows a local attacker to read arbitrary files because it handles configuration-file errors by printing the configuration file while executing in a setuid root context.
Reference
CVSS
Base: 4.9
Impact: 6.9
Exploitability:3.9
Pristup
VektorSloženostAutentikacija
LOCAL LOW NONE
Impact
PovjerljivostCjelovitostDostupnost
COMPLETE NONE NONE
CVSS vektor AV:L/AC:L/Au:N/C:C/I:N/A:N
Zadnje važnije ažuriranje 21-07-2021 - 11:39
Objavljeno 23-06-2020 - 20:15