CVE Vulnerabilities

CVE-2020-21583

Published: Aug 22, 2023 | Modified: Dec 20, 2024
CVSS 3.x
6.7
MEDIUM
Source:
NVD
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
CVSS 2.x
RedHat/V2
RedHat/V3
6.4 MODERATE
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
Ubuntu
LOW

An issue was discovered in hwclock.13-v2.27 allows attackers to gain escalated privlidges or execute arbitrary commands via the path parameter when setting the date.

Affected Software

Name Vendor Start Version End Version
Util-linux Kernel * 2.27 (excluding)
Util-linux Ubuntu bionic *
Util-linux Ubuntu esm-infra-legacy/trusty *
Util-linux Ubuntu trusty *
Util-linux Ubuntu trusty/esm *
Util-linux Ubuntu upstream *
Util-linux Ubuntu xenial *

References