CVE-2017-6516

Name of the Vulnerable Software and Affected Versions MagniComp's Sysinfo versions prior to 10-H64

Description A local issue could allow an attacker to gain elevated privileges. Parts of the software require setuid-to-root access to access restricted system files and make restricted kernel calls, which could be exploited by a local attacker to gain a root shell prompt using the right combination of environment variables and command line arguments.

Recommendations For versions prior to 10-H64, update to version 10-H64 or later to resolve the issue. As a temporary workaround, consider restricting setuid-to-root access for parts of the software that require it, to minimize the risk of exploitation.