Vulnerabilities > Shadow Project > Shadow > 4.8

DATE	CVE	VULNERABILITY TITLE	RISK
2019-12-18	CVE-2019-19882	Incorrect Permission Assignment for Critical Resource vulnerability in Shadow Project Shadow 4.8 shadow 4.8, in certain circumstances affecting at least Gentoo, Arch Linux, and Void Linux, allows local users to obtain root access because setuid programs are misconfigured. local shadow-project CWE-732	6.9

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.