CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
AI Score
Confidence
High
EPSS
Percentile
5.1%
utils/ecryptfs-recover-private in ecryptfs-utils before 90 does not establish a subdirectory with safe permissions, which might allow local users to bypass intended access restrictions via standard filesystem operations during the recovery process.
Vendor | Product | Version | CPE |
---|---|---|---|
ecryptfs | ecryptfs-utils | * | cpe:2.3:a:ecryptfs:ecryptfs-utils:*:*:*:*:*:*:*:* |
ecryptfs | ecryptfs-utils | 62 | cpe:2.3:a:ecryptfs:ecryptfs-utils:62:*:*:*:*:*:*:* |
ecryptfs | ecryptfs-utils | 63 | cpe:2.3:a:ecryptfs:ecryptfs-utils:63:*:*:*:*:*:*:* |
ecryptfs | ecryptfs-utils | 64 | cpe:2.3:a:ecryptfs:ecryptfs-utils:64:*:*:*:*:*:*:* |
ecryptfs | ecryptfs-utils | 65 | cpe:2.3:a:ecryptfs:ecryptfs-utils:65:*:*:*:*:*:*:* |
ecryptfs | ecryptfs-utils | 66 | cpe:2.3:a:ecryptfs:ecryptfs-utils:66:*:*:*:*:*:*:* |
ecryptfs | ecryptfs-utils | 67 | cpe:2.3:a:ecryptfs:ecryptfs-utils:67:*:*:*:*:*:*:* |
ecryptfs | ecryptfs-utils | 68 | cpe:2.3:a:ecryptfs:ecryptfs-utils:68:*:*:*:*:*:*:* |
ecryptfs | ecryptfs-utils | 69 | cpe:2.3:a:ecryptfs:ecryptfs-utils:69:*:*:*:*:*:*:* |
ecryptfs | ecryptfs-utils | 70 | cpe:2.3:a:ecryptfs:ecryptfs-utils:70:*:*:*:*:*:*:* |