A Incorrect Default Permissions vulnerability in the packaging of virtualbox of openSUSE Factory allows local attackers in the vboxusers groupu to escalate to root. This issue affects: openSUSE Factory virtualbox version 6.1.20-1.1 and prior versions.
References
Link | Resource |
---|---|
https://bugzilla.suse.com/show_bug.cgi?id=1182918 | Issue Tracking Patch Vendor Advisory |
Configurations
History
11 May 2021, 19:56
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:opensuse:factory:*:*:*:*:*:*:*:* | |
CVSS |
v2 : v3 : |
v2 : 7.2
v3 : 7.8 |
References | (CONFIRM) https://bugzilla.suse.com/show_bug.cgi?id=1182918 - Issue Tracking, Patch, Vendor Advisory |
05 May 2021, 09:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2021-05-05 09:15
Updated : 2023-12-10 13:55
NVD link : CVE-2021-25319
Mitre link : CVE-2021-25319
CVE.ORG link : CVE-2021-25319
JSON object : View
Products Affected
opensuse
- factory
CWE
CWE-276
Incorrect Default Permissions