← Retour aux CVEs
CVE-2020-11081
MEDIUM5.3
Description
osquery before version 4.4.0 enables a privilege escalation vulnerability. If a Window system is configured with a PATH that contains a user-writable directory then a local user may write a zlib1.dll DLL, which osquery will attempt to load. Since osquery runs with elevated privileges this enables local escalation. This is fixed in version 4.4.0.
Details CVE
Score CVSS v3.15.3
SeveriteMEDIUM
Vecteur CVSSCVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:N/I:H/A:N
Vecteur d'attaqueLOCAL
ComplexiteHIGH
Privileges requisLOW
Interaction utilisateurREQUIRED
Publie7/10/2020
Derniere modification11/21/2024
Sourcenvd
Observations honeypot0
Produits affectes
linuxfoundation:osquery
Faiblesses (CWE)
CWE-114CWE-426
References
https://github.com/osquery/osquery/commit/4d4957f12a6aa0becc9d01d9f97061e1e3d809c5(security-advisories@github.com)
https://github.com/osquery/osquery/issues/6426(security-advisories@github.com)
https://github.com/osquery/osquery/pull/6433(security-advisories@github.com)
https://github.com/osquery/osquery/releases/tag/4.4.0(security-advisories@github.com)
https://github.com/osquery/osquery/security/advisories/GHSA-2xwp-8fv7-c5pm(security-advisories@github.com)
https://github.com/osquery/osquery/commit/4d4957f12a6aa0becc9d01d9f97061e1e3d809c5(af854a3a-2127-422b-91ae-364da2661108)
https://github.com/osquery/osquery/issues/6426(af854a3a-2127-422b-91ae-364da2661108)
https://github.com/osquery/osquery/pull/6433(af854a3a-2127-422b-91ae-364da2661108)
https://github.com/osquery/osquery/releases/tag/4.4.0(af854a3a-2127-422b-91ae-364da2661108)
https://github.com/osquery/osquery/security/advisories/GHSA-2xwp-8fv7-c5pm(af854a3a-2127-422b-91ae-364da2661108)
Correlations IOC
Aucune correlation enregistree
This product uses data from the NVD API but is not endorsed or certified by the NVD.