CVE-2020-8013 : A UNIX Symbolic Link (Symlink) Following vulnerability in chkstat of SUSE Linux

A UNIX Symbolic Link (Symlink) Following vulnerability in chkstat of SUSE Linux Enterprise Server 12, SUSE Linux Enterprise Server 15, SUSE Linux Enterprise Server 11 set permissions intended for specific binaries on other binaries because it erroneously followed symlinks. The symlinks can't be controlled by attackers on default systems, so exploitation is difficult. This issue affects: SUSE Linux Enterprise Server 12 permissions versions prior to 2015.09.28.1626-17.27.1. SUSE Linux Enterprise Server 15 permissions versions prior to 20181116-9.23.1. SUSE Linux Enterprise Server 11 permissions versions prior to 2013.1.7-0.6.12.1.

Published 2020-03-02 17:15:20

Updated 2022-12-08 03:09:22

Source SUSE

View at NVD, CVE.org

Products affected by CVE-2020-8013

Suse » Linux Enterprise Server » Version: 12
cpe:2.3:o:suse:linux_enterprise_server:12:*:*:*:*:*:*:*
Matching versions
Suse » Linux Enterprise Server » Version: 15
cpe:2.3:o:suse:linux_enterprise_server:15:*:*:*:*:*:*:*
Matching versions
Suse » Linux Enterprise Server » Version: 11
cpe:2.3:o:suse:linux_enterprise_server:11:*:*:*:*:*:*:*
Matching versions
Opensuse » Leap » Version: 15.1
cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2020-8013

EPSS FAQ

0.06%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 18 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2020-8013

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
1.9	LOW	AV:L/AC:M/Au:N/C:N/I:P/A:N	3.4	2.9	NIST
Access Vector: Local Access Complexity: Medium Authentication: None Confidentiality Impact: None Integrity Impact: Partial Availability Impact: None
2.2	LOW	CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:L/A:N	0.8	1.4	SUSE
Attack Vector: Local Attack Complexity: High Privileges Required: Low User Interaction: Required Scope: Unchanged Confidentiality: None Integrity: Low Availability: None
2.5	LOW	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N	1.0	1.4	NIST
Attack Vector: Local Attack Complexity: High Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: None Integrity: Low Availability: None

CWE ids for CVE-2020-8013

CWE-59 Improper Link Resolution Before File Access ('Link Following')

The product attempts to access a file based on the filename, but it does not properly prevent that filename from identifying a link or shortcut that resolves to an unintended resource.
Assigned by:
- meissner@suse.de (Primary)
- nvd@nist.gov (Secondary)

References for CVE-2020-8013

https://bugzilla.suse.com/show_bug.cgi?id=1163922

Bug 1163922 – VUL-0: CVE-2020-8013: permissions: chkstat sets unintended setuid/capabilities for mrsh and wodim
Issue Tracking;Vendor Advisory
http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00010.html

[security-announce] openSUSE-SU-2020:0302-1: moderate: Security update f
Mailing List;Vendor Advisory

CVEs referencing this url

Jump to

Vulnerability Details : CVE-2020-8013

Products affected by CVE-2020-8013

Exploit prediction scoring system (EPSS) score for CVE-2020-8013

CVSS scores for CVE-2020-8013

CWE ids for CVE-2020-8013

References for CVE-2020-8013