CVE-2018-19636
published 2019-03-05CVE-2018-19636: Supportutils, before version 3.1-5.7.1, when run with command line argument -A searched the file system for a ndspath binary. If an attacker provides one at an…
high7.8CVSS 3.0
AVLACLPRLUINSUCHIHAH
Supportutils, before version 3.1-5.7.1, when run with command line argument -A searched the file system for a ndspath binary. If an attacker provides one at an arbitrary location it is executed with root privileges
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| opensuse | supportutils | < 3.1-5.7.1 | 3.1-5.7.1 |
| suse | supportutils | >= unspecified < 3.1-5.7.1 | 3.1-5.7.1 |