PT-2020-13747 · Cisofy · Lynis
Othman Madjoudj
·
Published
2020-06-18
·
Updated
2024-06-15
·
CVE-2020-13882
CVSS v3.1
4.2
Medium
| Vector | AV:L/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:L |
Name of the Vulnerable Software and Affected Versions
CISOfy Lynis versions prior to 3.0.0
Description
The issue is related to Incorrect Access Control due to a TOCTOU race condition. This condition allows an unprivileged attacker to bypass the routine that checks log and report file permissions locally. As a result, the attacker can set up a log and report file, control it until the check is performed, and then remove, recreate, and use the file for further attacks.
Recommendations
For versions prior to 3.0.0, update to version 3.0.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the log and report files to minimize the risk of exploitation.
Fix
Time Of Check To Time Of Use
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Lynis