A UNIX Symbolic Link (Symlink) Following vulnerability in the systemd service file for watchman of openSUSE Backports SLE-15-SP3, Factory allows local attackers to escalate to root. This issue affects: openSUSE Backports SLE-15-SP3 watchman versions prior to 4.9.0. openSUSE Factory watchman versions prior to 4.9.0-9.1.
References
Link | Resource |
---|---|
https://bugzilla.suse.com/show_bug.cgi?id=1194470 | Issue Tracking Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Information
Published : 2022-01-26 01:15
Updated : 2023-01-19 05:15
NVD link : CVE-2022-21944
Mitre link : CVE-2022-21944
JSON object : View
CWE
CWE-59
Improper Link Resolution Before File Access ('Link Following')
Products Affected
suse
- suse_linux_enterprise_server
opensuse
- factory_watchman