mirror of
https://github.com/fkie-cad/nvd-json-data-feeds.git
synced 2025-12-13 18:34:37 +00:00
25 lines
895 B
JSON
25 lines
895 B
JSON
{
|
|
"id": "CVE-2025-27591",
|
|
"sourceIdentifier": "cve-assign@fb.com",
|
|
"published": "2025-03-11T19:15:43.390",
|
|
"lastModified": "2025-03-11T19:15:43.390",
|
|
"vulnStatus": "Received",
|
|
"cveTags": [],
|
|
"descriptions": [
|
|
{
|
|
"lang": "en",
|
|
"value": "A privilege escalation vulnerability existed in the Below service prior to v0.9.0 due to the creation of a world-writable directory at /var/log/below. This could have allowed local unprivileged users to escalate to root privileges through symlink attacks that manipulate files such as /etc/shadow."
|
|
}
|
|
],
|
|
"metrics": {},
|
|
"references": [
|
|
{
|
|
"url": "https://github.com/facebookincubator/below/commit/da9382e6e3e332fd2c3195e22f34977f83f0f1f3",
|
|
"source": "cve-assign@fb.com"
|
|
},
|
|
{
|
|
"url": "https://www.facebook.com/security/advisories/cve-2025-27591",
|
|
"source": "cve-assign@fb.com"
|
|
}
|
|
]
|
|
} |