CVE-2021-23892

CVE-2021-23892

By exploiting a time of check to time of use (TOCTOU) race condition during the Endpoint Security for Linux Threat Prevention and Firewall (ENSL TP/FW) installation process, a local user can perform a privilege escalation attack to obtain administrator privileges for the purpose of executing arbitrary code through insecure use of predictable temporary file locations.

Source: CVE-2021-23892

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다