Romain Trouve

**Name of the Vulnerable Software and Affected Versions** MagniComp's Sysinfo versions prior to 10-H64 **Description** A local issue could allow an attacker to gain elevated privileges. Parts of the software require setuid-to-root access to access restricted system files and make restricted kernel calls, which could be exploited by a local attacker to gain a root shell prompt using the right combination of environment variables and command line arguments. **Recommendations** For versions prior to 10-H64, update to version 10-H64 or later to resolve the issue. As a temporary workaround, consider restricting setuid-to-root access for parts of the software that require it, to minimize the risk of exploitation.