The capsh program in libcap before 2.22 does not change the current working directory when the --chroot option is specified, which allows local users to bypass the chroot restrictions via unspecified vectors.
CVSS Score
4.6
EPSS Score
0.001
Published
2014-02-08