CVSS2
Attack Vector
LOCAL
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:H/Au:N/C:C/I:C/A:C
AI Score
Confidence
High
EPSS
Percentile
5.1%
os-prober in os-prober 1.17 allows local users to overwrite arbitrary files via a symlink attack on the (1) /tmp/mounted-map or (2) /tmp/raided-map temporary file. NOTE: the vendor disputes this issue, stating "the insecure code path should only ever run inside a d-i environment, which has no non-root users.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | os-prober | <= 1.81 | os-prober_1.81_all.deb |
Debian | 11 | all | os-prober | <= 1.79 | os-prober_1.79_all.deb |
Debian | 999 | all | os-prober | <= 1.83 | os-prober_1.83_all.deb |
Debian | 13 | all | os-prober | <= 1.83 | os-prober_1.83_all.deb |