The replay-sorcery program in ReplaySorcery 0.4.0 through 0.5.0, when using the default setuid-root configuration, allows a local attacker to escalate privileges to root by specifying video output paths in privileged locations.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2021-02-10T17:53:59

Updated: 2024-08-03T20:33:41.553Z

Reserved: 2021-02-09T00:00:00

Link: CVE-2021-26936

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2021-02-10T18:15:13.017

Modified: 2024-11-21T05:57:05.103

Link: CVE-2021-26936

cve-icon Redhat

No data.