← Volver a CVEs
CVE-2019-12522
MEDIUM4.5
Descripcion
An issue was discovered in Squid through 4.7. When Squid is run as root, it spawns its child processes as a lesser user, by default the user nobody. This is done via the leave_suid call. leave_suid leaves the Saved UID as 0. This makes it trivial for an attacker who has compromised the child process to escalate their privileges back to root.
Detalles CVE
Puntuacion CVSS v3.14.5
SeveridadMEDIUM
Vector CVSSCVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L
Vector de ataqueLOCAL
ComplejidadHIGH
Privilegios requeridosLOW
Interaccion usuarioNONE
Publicado4/15/2020
Ultima modificacion11/21/2024
Fuentenvd
Avistamientos honeypot0
Productos afectados
squid-cache:squid
Debilidades (CWE)
CWE-269
Referencias
https://security.netapp.com/advisory/ntap-20210205-0006/(cve@mitre.org)
https://gitlab.com/jeriko.one/security/-/blob/master/squid/CVEs/CVE-2019-12522.txt(af854a3a-2127-422b-91ae-364da2661108)
https://security.netapp.com/advisory/ntap-20210205-0006/(af854a3a-2127-422b-91ae-364da2661108)
Correlaciones IOC
Sin correlaciones registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.