CVE-2019-3844
moderate-risk
Published 2019-04-26
It was discovered that a systemd service that uses DynamicUser property can get new privileges through the execution of SUID binaries, which would allow to create binaries owned by the service transient group with the setgid bit set. A local attacker may use this flaw to access resources that will be owned by a potentially different service in the future, when the GID will be recycled.
Do I need to act?
-
0.15% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
!
1 public exploit available
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
7
CVSS 7.8/10
High
LOCAL
/ LOW complexity
Affected Products (8)
Affected Vendors
References (12)
Third Party Advisory
http://www.securityfocus.com/bid/108096
Issue Tracking
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3844
Third Party Advisory
https://security.netapp.com/advisory/ntap-20190619-0002/
Third Party Advisory
https://usn.ubuntu.com/4269-1/
Third Party Advisory
http://www.securityfocus.com/bid/108096
Issue Tracking
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3844
Third Party Advisory
https://security.netapp.com/advisory/ntap-20190619-0002/
Third Party Advisory
https://usn.ubuntu.com/4269-1/
46
/ 100
moderate-risk
Severity
24/34 · High
Exploitability
8/34 · Low
Exposure
14/34 · Moderate