A Improper Access Control vulnerability in the systemd service of cana in openSUSE Backports SLE-15-SP3, openSUSE Backports SLE-15-SP4 allows local users to hijack the UNIX domain socket This issue affects: openSUSE Backports SLE-15-SP3 canna versions prior to canna-3.7p3-bp153.2.3.1. openSUSE Backports SLE-15-SP4 canna versions prior to 3.7p3-bp154.3.3.1. openSUSE Factory was also affected. Instead of fixing the package it was deleted there.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://bugzilla.suse.com/show_bug.cgi?id=1199280 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: suse
Published: 2022-09-07T08:40:10.110711Z
Updated: 2024-09-17T02:32:53.607Z
Reserved: 2021-12-16T00:00:00
Link: CVE-2022-21950
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2022-09-07T09:15:08.670
Modified: 2023-04-14T18:50:52.760
Link: CVE-2022-21950
Redhat
No data.