rpm package
opensuse/google-compute-engine&distro=openSUSE Leap 15.1
pkg:rpm/opensuse/google-compute-engine&distro=openSUSE%20Leap%2015.1
Vulnerabilities (3)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2020-8933 | — | < 20190801-lp151.2.25.1 | 20190801-lp151.2.25.1 | Jun 22, 2020 | A vulnerability in Google Cloud Platform's guest-oslogin versions between 20190304 and 20200507 allows a user that is only granted the role "roles/compute.osLogin" to escalate privileges to root. Using the membership to the "lxd" group, an attacker can attach host devices and fil | ||
| CVE-2020-8907 | — | < 20190801-lp151.2.25.1 | 20190801-lp151.2.25.1 | Jun 22, 2020 | A vulnerability in Google Cloud Platform's guest-oslogin versions between 20190304 and 20200507 allows a user that is only granted the role "roles/compute.osLogin" to escalate privileges to root. Using their membership to the "docker" group, an attacker with this role is able to | ||
| CVE-2020-8903 | — | < 20190801-lp151.2.25.1 | 20190801-lp151.2.25.1 | Jun 22, 2020 | A vulnerability in Google Cloud Platform's guest-oslogin versions between 20190304 and 20200507 allows a user that is only granted the role "roles/compute.osLogin" to escalate privileges to root. Using their membership to the "adm" group, users with this role are able to read the |
- CVE-2020-8933Jun 22, 2020affected < 20190801-lp151.2.25.1fixed 20190801-lp151.2.25.1
A vulnerability in Google Cloud Platform's guest-oslogin versions between 20190304 and 20200507 allows a user that is only granted the role "roles/compute.osLogin" to escalate privileges to root. Using the membership to the "lxd" group, an attacker can attach host devices and fil
- CVE-2020-8907Jun 22, 2020affected < 20190801-lp151.2.25.1fixed 20190801-lp151.2.25.1
A vulnerability in Google Cloud Platform's guest-oslogin versions between 20190304 and 20200507 allows a user that is only granted the role "roles/compute.osLogin" to escalate privileges to root. Using their membership to the "docker" group, an attacker with this role is able to
- CVE-2020-8903Jun 22, 2020affected < 20190801-lp151.2.25.1fixed 20190801-lp151.2.25.1
A vulnerability in Google Cloud Platform's guest-oslogin versions between 20190304 and 20200507 allows a user that is only granted the role "roles/compute.osLogin" to escalate privileges to root. Using their membership to the "adm" group, users with this role are able to read the