CVE-2020-21583
published 2023-08-22CVE-2020-21583: An issue was discovered in hwclock.13-v2.27 allows attackers to gain escalated privlidges or execute arbitrary commands via the path parameter when setting the…
medium6.7CVSS 3.1
AVLACLPRHUINSUCHIHAH
An issue was discovered in hwclock.13-v2.27 allows attackers to gain escalated privlidges or execute arbitrary commands via the path parameter when setting the date.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | util-linux | < util-linux 2.27-1 (bookworm) | util-linux 2.27-1 (bookworm) |
| kernel | util-linux | < 2.27 | 2.27 |
| kernel | util-linux | >= 0 < 2.27-1 | 2.27-1 |
| kernel | util-linux | >= 0 < 2.27-1 | 2.27-1 |
| kernel | util-linux | >= 0 < 2.27-1 | 2.27-1 |
| kernel | util-linux | >= 0 < 2.27-1 | 2.27-1 |
CVSS provenance
nvdv3.16.7MEDIUMCVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
osv6.7MEDIUM