6.5 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
5.1%
A flaw was found in katello-debug before 3.4.0 where certain scripts and log files used insecure temporary files. A local user could exploit this flaw to conduct a symbolic-link attack, allowing them to overwrite the contents of arbitrary files.
access.redhat.com/errata/RHSA-2018:0336
bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-9595