CVE-2020-8018 vulnerability in Suse Products
Published on May 4, 2020
User owned /etc in SLES15-SP1-CHOST-BYOS
A Incorrect Default Permissions vulnerability in the SLES15-SP1-CHOST-BYOS and SLES15-SP1-CAP-Deployment-BYOS images of SUSE Linux Enterprise Server 15 SP1 allows local attackers with the UID 1000 to escalate to root due to a /etc directory owned by the user This issue affects: SUSE Linux Enterprise Server 15 SP1 SLES15-SP1-CAP-Deployment-BYOS version 1.0.1 and prior versions; SLES15-SP1-CHOST-BYOS versions prior to 1.0.3 and prior versions;
Vulnerability Analysis
CVE-2020-8018 is exploitable with local system access, and does not require authorization privileges or user interaction. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to be very high.
Weakness Type
Incorrect Default Permissions
During installation, installed file permissions are set to allow anyone to modify those files.
Products Associated with CVE-2020-8018
stack.watch emails you whenever new vulnerabilities are published in Suse Linux Enterprise Desktop or Suse Linux Enterprise Server. Just hit a watch button to start following.
Affected Versions
SUSE Linux Enterprise Server 15 SP1:- Version SLES15-SP1-CAP-Deployment-BYOS, <= 1.0.1 is affected.
- Version SLES15-SP1-CHOST-BYOS, <= 1.0.3 is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.