cbcvebase.
CVE-2015-3246
published 2015-08-11

CVE-2015-3246: libuser before 0.56.13-8 and 0.60 before 0.60-7, as used in the userhelper program in the usermode package, directly modifies /etc/passwd, which allows local…

PriorityP339high7.2CVSS 2.0
AVLACLAuNCCICAC
EXPLOIT
EPSS
6.85%
93.2th percentile
libuser before 0.56.13-8 and 0.60 before 0.60-7, as used in the userhelper program in the usermode package, directly modifies /etc/passwd, which allows local users to cause a denial of service (inconsistent file state) by causing an error during the modification. NOTE: this issue can be combined with CVE-2015-3245 to gain privileges.

Affected

12 ranges
VendorProductVersion rangeFixed in
debianlibuser< libuser 1:0.62~dfsg-0.1 (bookworm)libuser 1:0.62~dfsg-0.1 (bookworm)
libuserlibuser>= 0 < 1:0.62~dfsg-0.11:0.62~dfsg-0.1
libuserlibuser>= 0 < 1:0.62~dfsg-0.11:0.62~dfsg-0.1
libuserlibuser>= 0 < 1:0.62~dfsg-0.11:0.62~dfsg-0.1
libuserlibuser>= 0 < 1:0.62~dfsg-0.11:0.62~dfsg-0.1
redhatlibuser<= 0.56.13-5
redhatlibuser
redhatlibuser
redhatlibuser
redhatlibuser
redhatlibuser
redhatlibuser

CVSS provenance

nvdv2.07.2HIGHAV:L/AC:L/Au:N/C:C/I:C/A:C
osv2.1LOW
vendor_debian2.1LOW
vendor_redhat2.1LOW
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.