| ID |
CVE-2021-23239
|
| Sažetak |
The sudoedit personality of Sudo before 1.9.5 may allow a local unprivileged user to perform arbitrary directory-existence tests by winning a sudo_edit.c race condition in replacing a user-controlled directory by a symlink to an arbitrary path. |
| Reference |
|
| CVSS |
| Base: | 1.9 |
| Impact: | 2.9 |
| Exploitability: | 3.4 |
|
| Pristup |
| Vektor | Složenost | Autentikacija |
| LOCAL |
MEDIUM |
NONE |
|
| Impact |
| Povjerljivost | Cjelovitost | Dostupnost |
| PARTIAL |
NONE |
NONE |
|
| CVSS vektor |
AV:L/AC:M/Au:N/C:P/I:N/A:N |
| Zadnje važnije ažuriranje |
07-11-2023 - 03:30 |
| Objavljeno |
12-01-2021 - 09:15 |
