CVE-2021-31998 — Incorrect Default Permissions in Backports Sle-15-sp2

CWE-276 — Incorrect Default Permissions5 documents5 sources

Severity

7.8HIGHNVD

CNA6.8

EPSS

0.0%

top 91.96%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Opensuse Backports Sle-15-sp2 Opensuse Leap 15.2 Opensuse INN +1 more

Timeline

PublishedJun 10

Latest updateMay 24

Description

A Incorrect Default Permissions vulnerability in the packaging of inn of SUSE Linux Enterprise Server 11-SP3; openSUSE Backports SLE-15-SP2, openSUSE Leap 15.2 allows local attackers to escalate their privileges from the news user to root. This issue affects: SUSE Linux Enterprise Server 11-SP3 inn version inn-2.4.2-170.21.3.1 and prior versions. openSUSE Backports SLE-15-SP2 inn versions prior to 2.6.2. openSUSE Leap 15.2 inn versions prior to 2.6.2.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages4 packages

▶CVEListV5opensuse/opensuse_leap_15.2inn — 2.6.2

▶CVEListV5opensuse/opensuse_backports_sle-15-sp2inn — 2.6.2

▶CVEListV5suse/suse_linux_enterprise_server_11-sp3inn — inn-2.4.2-170.21.3.1

▶NVDopensuse/inn< 2.6.2+1

🔴Vulnerability Details

GHSA

GHSA-rqpg-j7j6-g58g: A Incorrect Default Permissions vulnerability in the packaging of inn of SUSE Linux Enterprise Server 11-SP3; openSUSE Backports SLE-15-SP2, openSUSE↗2022-05-24

▶

CVEList

inn: %post calls user owned file allowing local privilege escalation to root↗2021-06-10

▶

OSV

CVE-2021-31998: A Incorrect Default Permissions vulnerability in the packaging of inn of SUSE Linux Enterprise Server 11-SP3; openSUSE Backports SLE-15-SP2, openSUSE↗2021-06-10

▶

📋Vendor Advisories

Debian

CVE-2021-31998: inn2 - A Incorrect Default Permissions vulnerability in the packaging of inn of SUSE Li...↗2021

▶