Skolelinux - Debian-edu-config CVE

Filtered by vendor Skolelinux Subscribe

Filtered by product Debian-edu-config

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2021-20001	2 Debian, Skolelinux	2 Debian Linux, Debian-edu-config	2022-02-22	7.5 HIGH	9.8 CRITICAL
It was discovered, that debian-edu-config, a set of configuration files used for the Debian Edu blend, before 2.12.16 configured insecure permissions for the user web shares (~/public_html), which could result in privilege escalation.

Vulnerabilities (CVE)