| Titel | KylinSoft kylin-system-updater ≤ 2.0.5.16-0k2.33 local privilege escalation |
|---|
| Beschreibung | A local privilege escalation vulnerability exists in Kylin OS within the dbus functionality, specifically in the SetDownloadspeedMax function of the com.kylin.systemupgrade service. An attacker can exploit this vulnerability to elevate their privileges on the affected system from a regular user to a system administrator. |
|---|
| Quelle | ⚠️ https://note.zhaoj.in/share/L1hGe9BDlbnt |
|---|
| Benutzer | glzjin (UID 59815) |
|---|
| Einreichung | 15.12.2023 18:56 (vor 2 Jahren) |
|---|
| Moderieren | 24.12.2023 09:04 (9 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 248940 [KylinSoft kylin-system-updater bis 2.0.5.16-0k2.33 com.kylin.systemupgrade Service UpgradeStrategiesDbus.py SetDownloadspeedMax erweiterte Rechte] |
|---|
| Punkte | 18 |
|---|