High severity8.8OSV Advisory· Published Dec 20, 2018· Updated Jun 17, 2026
CVE-2018-1000857
CVE-2018-1000857
Description
log-user-session version 0.7 and earlier contains a Directory Traversal vulnerability in Main SUID-binary /usr/local/bin/log-user-session that can result in User to root privilege escalation. This attack appear to be exploitable via Malicious unprivileged user executes the vulnerable binary/(remote) environment variable manipulation similar shell-shock also possible.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
20.2, 0.3, 0.4, …+ 1 more
- (no CPE)range: 0.2, 0.3, 0.4, …
- (no CPE)range: <=0.7
Patches
Vulnerability mechanics
References
1- www.halfdog.net/Security/2018/LogUserSessionLocalRootPrivilegeEscalation/nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.