CVE-2020-15396
published 2020-06-30CVE-2020-15396: In HylaFAX+ through 7.0.2 and HylaFAX Enterprise, the faxsetup utility calls chown on files in user-owned directories. By winning a race, a local attacker…
high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
In HylaFAX+ through 7.0.2 and HylaFAX Enterprise, the faxsetup utility calls chown on files in user-owned directories. By winning a race, a local attacker could use this to escalate his privileges to root.
Affected
11 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | hylafax | < hylafax 3:6.0.7-3.1 (bookworm) | hylafax 3:6.0.7-3.1 (bookworm) |
| fedoraproject | fedora | — | — |
| fedoraproject | fedora | — | — |
| hylafax | hylafax | >= 0 < 3:6.0.7-3.1 | 3:6.0.7-3.1 |
| hylafax | hylafax | >= 0 < 3:6.0.7-3.1 | 3:6.0.7-3.1 |
| hylafax | hylafax | >= 0 < 3:6.0.7-3.1 | 3:6.0.7-3.1 |
| hylafax | hylafax | >= 0 < 3:6.0.7-3.1 | 3:6.0.7-3.1 |
| hylafax_+_project | hylafax | <= 7.0.2 | — |
| opensuse | backports_sle | — | — |
| opensuse | leap | — | — |
| opensuse | leap | — | — |
CVSS provenance
nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
osv7.8HIGH