CVE-2019-18901 — Link Following in Linux Enterprise Server 12

CWE-59 — Link Following3 documents3 sources

Severity

5.5MEDIUMNVD

CNA5.1

EPSS

0.1%

top 72.06%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Suse Linux Enterprise Server 12 Suse Linux Enterprise Server 15 Opensuse Leap +1 more

Timeline

PublishedMar 2

Latest updateMay 24

Description

A UNIX Symbolic Link (Symlink) Following vulnerability in the mysql-systemd-helper of the mariadb packaging of SUSE Linux Enterprise Server 12, SUSE Linux Enterprise Server 15 allows local attackers to change the permissions of arbitrary files to 0640. This issue affects: SUSE Linux Enterprise Server 12 mariadb versions prior to 10.2.31-3.25.1. SUSE Linux Enterprise Server 15 mariadb versions prior to 10.2.31-3.26.1.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:NExploitability: 1.8 | Impact: 3.6

Affected Packages4 packages

▶CVEListV5suse/suse_linux_enterprise_server_12mariadb — 10.2.31-3.25.1

▶CVEListV5suse/suse_linux_enterprise_server_15mariadb — 10.2.31-3.26.1

▶NVDsuse/linux_enterprise_server12, 15+1

▶NVDopensuse/leap15.1

🔴Vulnerability Details

GHSA

GHSA-xhr6-cwm7-hfr4: A UNIX Symbolic Link (Symlink) Following vulnerability in the mysql-systemd-helper of the mariadb packaging of SUSE Linux Enterprise Server 12, SUSE L↗2022-05-24

▶

CVEList

mysql-systemd-helper allows setting 640 permissions of arbitrary files↗2020-03-02

▶