CVE-2015-3159

Published January 14th, 2020

View on NVD ↗

CVSS v3

7.8

HIGH

CVSS v2

7.2

HIGH

Affected

PROJECT

Description

The abrt-action-install-debuginfo-to-abrt-cache help program in Automatic Bug Reporting Tool (ABRT) does not properly handle the process environment before invoking abrt-action-install-debuginfo, which allows local users to gain privileges.

abrt/abrt

Automatic bug detection and reporting tool

GitHub

244