Lucene search
Veracode Vulnerability DatabaseVERACODE:32061HistorySep 12, 2021 - 1:17 a.m.
Privilege Escalation
2021-09-1201:17:35
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
12
systemd-cron
privilege escalation
cron package
postinst maintainer script
group-crontab-to-root
symlink attacks
chown program
chmod program
software
EPSS
0.001
Percentile
26.7%
systemd-cron:sid is vulnerable to privilege escalation. In the cron package, the postinst maintainer script allows for group-crontab-to-root privilege escalation via symlink attacks against unsafe usage of the chown and chmod programs.
Related
ubuntucve
ubuntucve
CVE-2017-9525
2017-06-09 00:00:00
prion
prion
Design/Logic Flaw
2017-06-09 16:29:00
cvelist
cvelist
CVE-2017-9525
2017-06-09 16:00:00
cve
cve
CVE-2017-9525
2017-06-09 16:29:02
debiancve
debiancve
CVE-2017-9525
2017-06-09 16:29:02
nvd
nvd
CVE-2017-9525
2017-06-09 16:29:02
osv
osv
cron vulnerabilities
2022-05-06 08:42:24
cron vulnerabilities
2022-02-01 14:38:29
cron regression
2022-05-11 00:25:41
nessus
nessus
Ubuntu 16.04 ESM / 18.04 LTS : Cron regression (USN-5259-3)
2022-05-11 00:00:00
Debian DLA-1723-1 : cron security update
2019-03-25 00:00:00
Ubuntu 18.04 LTS : Cron vulnerabilities (USN-5259-2)
2022-05-06 00:00:00
ubuntu
ubuntu
Cron vulnerabilities
2022-05-06 00:00:00
Cron vulnerabilities
2022-02-01 00:00:00
Cron regression
2022-05-11 00:00:00
cloudfoundry
cloudfoundry
USN-5259-3: Cron regression | Cloud Foundry
2022-07-29 00:00:00
USN-5259-2: Cron vulnerabilities | Cloud Foundry
2022-07-29 00:00:00
debian
debian
[SECURITY] [DLA 2801-1] cron security update
2021-10-30 18:16:57
[SECURITY] [DLA 1723-1] cron security update
2019-03-21 20:21:10
openvas
openvas
Ubuntu: Security Advisory (USN-5259-3)
2022-05-11 00:00:00
Debian: Security Advisory (DLA-1723-1)
2019-03-21 00:00:00
Ubuntu: Security Advisory (USN-5259-2)
2022-05-07 00:00:00