VYPR
Unrated severityNVD Advisory· Published Jun 30, 2020· Updated Aug 4, 2024

CVE-2020-15396

CVE-2020-15396

Description

In HylaFAX+ through 7.0.2 and HylaFAX Enterprise, the faxsetup utility calls chown on files in user-owned directories. By winning a race, a local attacker could use this to escalate his privileges to root.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

7

Patches

Vulnerability mechanics

References

9

News mentions

0

No linked articles in our index yet.