Sgi Performance Co Pilot
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Sgi Performance Co Pilot.
By the Year
In 2025 there have been 0 vulnerabilities in Sgi Performance Co Pilot. Last year, in 2024 Performance Co Pilot had 1 security vulnerability published. Right now, Performance Co Pilot is on track to have less security vulnerabilities in 2025 than it did last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2025 | 0 | 0.00 |
| 2024 | 1 | 6.00 |
It may take a day or so for new Performance Co Pilot vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Sgi Performance Co Pilot Security Vulnerabilities
PCP Priv Esc via symlink (root vs PCP user)
CVE-2023-6917
6 - Medium
- February 28, 2024
A vulnerability has been identified in the Performance Co-Pilot (PCP) package, stemming from the mixed privilege levels utilized by systemd services associated with PCP. While certain services operate within the confines of limited PCP user/group privileges, others are granted full root privileges. This disparity in privilege levels poses a risk when privileged root processes interact with directories or directory trees owned by unprivileged PCP users. Specifically, this vulnerability may lead to the compromise of PCP user isolation and facilitate local PCP-to-root exploits, particularly through symlink attacks. These vulnerabilities underscore the importance of maintaining robust privilege separation mechanisms within PCP to mitigate the potential for unauthorized privilege escalation.
Creation of Temporary File With Insecure Permissions
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Sgi Performance Co Pilot or by Sgi? Click the Watch button to subscribe.
