CVE-2013-4392

ADVISORY - nist

Summary

systemd, when updating file permissions, allows local users to change the permissions and SELinux security contexts for arbitrary files via a symlink attack on unspecified files.

EPSS Score⁠: 0.00067 (0.212)

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-59⁠

Improper Link Resolution Before File Access ('Link Following')

ADVISORY - redhat

CWE-367⁠

Time-of-check Time-of-use (TOCTOU) Race Condition

Impacted images

Advisories

Sign in to Docker Scout

See which of your images are affected by this CVE and how to fix them by signing into Docker Scout.