CyberSec.Space Logo
返回 CVE 浏览器

CVE-2021-31998

MEDIUM
6.8
CVSS Severity Score
EPSS Score0.0610%
EPSS Percentile9.44th
Published2021年6月10日
Last Modified2024年11月21日

Vulnerability Description

A Incorrect Default Permissions vulnerability in the packaging of inn of SUSE Linux Enterprise Server 11-SP3; openSUSE Backports SLE-15-SP2, openSUSE Leap 15.2 allows local attackers to escalate their privileges from the news user to root. This issue affects: SUSE Linux Enterprise Server 11-SP3 inn version inn-2.4.2-170.21.3.1 and prior versions. openSUSE Backports SLE-15-SP2 inn versions prior to 2.6.2. openSUSE Leap 15.2 inn versions prior to 2.6.2.

Affected Platforms (CPE)

📦
Opensuse

Inn

<= 2.4.2-170.21.3.1
📦
Opensuse

Inn

< 2.6.2

References & Advisories

🔗 https://bugzilla.suse.com/show_bug.cgi?id=1182321
🔗 https://bugzilla.suse.com/show_bug.cgi?id=1182321

相关漏洞威胁

CVE-2002-052510.0

Format string vulnerabilities in (1) inews or (2) rnews for INN 2.2.3 and earlier allow local users and remote malicious NNTP serv...

CVE-1999-075410.0

The INN inndstart program allows local users to gain privileges by specifying an alternate configuration file using the INNCONF en...

CVE-2021-414719.8

SQL injection vulnerability in Sourcecodester South Gate Inn Online Reservation System v1 by oretnom23, allows attackers to execut...

CVE-2021-416629.8

The South Gate Inn Online Reservation System v1.0 contains an SQL injection vulnerability that can be chained with a malicious PHP...

CVE-2021-31998 Detail & Impact Analysis | CVSS 6.8 (MEDIUM) | Cyber-Sec.Space | Cyber-Sec.Space