Home

CVE-2021-25321

Description

A UNIX Symbolic Link (Symlink) Following vulnerability in arpwatch of SUSE Linux Enterprise Server 11-SP4-LTSS, SUSE Manager Server 4.0, SUSE OpenStack Cloud Crowbar 9; openSUSE Factory, Leap 15.2 allows local attackers with control of the runtime user to run arpwatch as to escalate to root upon the next restart of arpwatch. This issue affects: SUSE Linux Enterprise Server 11-SP4-LTSS arpwatch versions prior to 2.1a15. SUSE Manager Server 4.0 arpwatch versions prior to 2.1a15. SUSE OpenStack Cloud Crowbar 9 arpwatch versions prior to 2.1a15. openSUSE Factory arpwatch version 2.1a15-169.5 and prior versions. openSUSE Leap 15.2 arpwatch version 2.1a15-lp152.5.5 and prior versions.

Risk Information

Base Score
7.8
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.03

Associated Vulnerability

VulnerabilityOS Platform
SUSE-SU-2021:2175-1(SUSE Linux Enterprise Server 12-SP5 ) arpwatch-2.1a15-159.9.1.x86_64.rpmLinux
SUSE-SU-2021:2175-1(SUSE Linux Enterprise Server 12-SP5 ) arpwatch-debuginfo-2.1a15-159.9.1.x86_64.rpmLinux
SUSE-SU-2021:2175-1(SUSE Linux Enterprise Server 12-SP5 ) arpwatch-debugsource-2.1a15-159.9.1.x86_64.rpmLinux
SUSE-SU-2021:2177-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) arpwatch-2.1a15-5.12.1.x86_64.rpmLinux
SUSE-SU-2021:2177-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) arpwatch-debuginfo-2.1a15-5.12.1.x86_64.rpmLinux
SUSE-SU-2021:2177-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) arpwatch-debugsource-2.1a15-5.12.1.x86_64.rpmLinux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234