Gnu: >> Gnump3d >> 2.9.6 Security Vulnerabilities
UNIX Symbolic Link (Symlink) Following vulnerability in the packaging of gnump3d in openSUSE Leap 15.1 allows local attackers to escalate from user gnump3d to root. This issue affects: openSUSE Leap 15.1 gnump3d version 3.0-lp151.2.1 and prior versions.
CVSS Score
7.7
EPSS Score
0.0
Published
2020-01-24
GNU Gnump3d before 2.9.8 allows local users to modify or delete arbitrary files via a symlink attack on the index.lok temporary file.
CVSS Score
1.9
EPSS Score
0.0
Published
2005-11-18
Directory traversal vulnerability in GNU Gnump3d before 2.9.8 has unknown impact via "CGI parameters, and cookie values".
CVSS Score
6.4
EPSS Score
0.007
Published
2005-11-18