nilfs-utils before 2.0.14 installs multiple programs with unnecessary setuid privileges, which allows local users to execute arbitrary commands via the device string in a -c command line option to mkfs.nilfs2.
Max CVSS
4.6
EPSS Score
0.04%
Published
2009-08-04
Updated
2009-08-05
1 vulnerabilities found