Lucene search

MitreCVE-2019-12522

HistoryApr 15, 2020 - 7:15 p.m.

CVE-2019-12522

2020-04-1519:15:12

CWE-269

mitre

web.nvd.nist.gov

779

squid

cve-2019-12522

privilege escalation

nvd

security issue

CVSS2

4.4

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:P/I:P/A:P

CVSS3

4.5

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

LOW

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L

AI Score

4.9

Confidence

High

EPSS

Percentile

12.6%

JSON

An issue was discovered in Squid through 4.7. When Squid is run as root, it spawns its child processes as a lesser user, by default the user nobody. This is done via the leave_suid call. leave_suid leaves the Saved UID as 0. This makes it trivial for an attacker who has compromised the child process to escalate their privileges back to root.

Affected configurations

Nvd

Node

squid-cachesquidRange≤4.7

VendorProductVersionCPE
squid-cachesquid*cpe:2.3:a:squid-cache:squid:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
squid-cache	squid	*	cpe:2.3:a:squid-cache:squid::::::::

References

gitlab.com/jeriko.one/security/-/blob/master/squid/CVEs/CVE-2019-12522.txt

security.netapp.com/advisory/ntap-20210205-0006/

CVSS2

4.4

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:P/I:P/A:P

CVSS3

4.5

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

LOW

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L

AI Score

4.9

Confidence

High

EPSS

Percentile

12.6%

JSON

Related for CVE-2019-12522