Vulnerabilities > CVE-2019-3697

CVSS 7.8 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

opensuse

gnu

NVD

Published: 2020-01-24

Updated: 2024-11-21

Summary

UNIX Symbolic Link (Symlink) Following vulnerability in the packaging of gnump3d in openSUSE Leap 15.1 allows local attackers to escalate from user gnump3d to root. This issue affects: openSUSE Leap 15.1 gnump3d version 3.0-lp151.2.1 and prior versions.

Vulnerable Configurations

Part	Description	Count
OS	Opensuse Opensuse Leap 15.1	1
Application	Gnu GNU Gnump3D - GNU Gnump3D 2.0 GNU Gnump3D 2.1 GNU Gnump3D 2.2 GNU Gnump3D 2.3 GNU Gnump3D 2.4 GNU Gnump3D 2.5 GNU Gnump3D 2.5B GNU Gnump3D 2.6 GNU Gnump3D 2.7 GNU Gnump3D 2.8 GNU Gnump3D 2.9 GNU Gnump3D 2.9.1 GNU Gnump3D 2.9.2 GNU Gnump3D 2.9.3 GNU Gnump3D 2.9.4 GNU Gnump3D 2.9.5 GNU Gnump3D 2.9.6 GNU Gnump3D 2.9.7 GNU Gnump3D 3.0	20

References

https://bugzilla.suse.com/show_bug.cgi?id=1154229
https://bugzilla.suse.com/show_bug.cgi?id=1154229

Vulnerabilities > CVE-2019-3697 {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"CVE-2019-3697"}]}

Summary

Vulnerable Configurations

References

Vulnerabilities > CVE-2019-3697