CVE-2019-3687 — Incorrect Default Permissions in Linux Enterprise Server

CWE-276 — Incorrect Default Permissions3 documents3 sources

Severity

3.3LOWNVD

CNA4.0

EPSS

0.1%

top 76.06%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Suse Linux Enterprise Server

Timeline

PublishedJan 24

Latest updateMay 24

Description

The permission package in SUSE Linux Enterprise Server allowed all local users to run dumpcap in the "easy" permission profile and sniff network traffic. This issue affects: SUSE Linux Enterprise Server permissions versions starting from 85c83fef7e017f8ab7f8602d3163786d57344439 to 081d081dcfaf61710bda34bc21c80c66276119aa.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:NExploitability: 1.8 | Impact: 1.4

Affected Packages1 packages

▶CVEListV5suse/suse_linux_enterprise_serverpermissions — 081d081dcfaf61710bda34bc21c80c66276119aa

🔴Vulnerability Details

GHSA

GHSA-q4cf-vq5x-23pq: The permission package in SUSE Linux Enterprise Server allowed all local users to run dumpcap in the "easy" permission profile and sniff network traff↗2022-05-24

▶

CVEList

"easy" permission profile allows everyone execute dumpcap and read all network traffic↗2020-01-24

▶