CVE-2025-27591 in belowinformazioni

Riassunto

di MITRE • 11/03/2025

A privilege escalation vulnerability existed in the Below service prior to v0.9.0 due to the creation of a world-writable directory at /var/log/below. This could have allowed local unprivileged users to escalate to root privileges through symlink attacks that manipulate files such as /etc/shadow.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Responsabile

Facebook

Prenotare

03/03/2025

Divulgazione

11/03/2025

Moderazione

accettato

CPE

pronto

EPSS

0.00360

KEV

no

Attività

molto basso

Fonti

Do you know our Splunk app?

Download it now for free!