Red Hat Storage 2.0 allows local users to overwrite arbitrary files via a symlink attack on the (1) e, (2) local-bricks.list, (3) bricks.err, or (4) limits.conf files in /tmp. Rated low severity (CVSS 3.6), this vulnerability is low attack complexity.
Red Hat
Information Disclosure
Storage Server
NVD
CVSS 2.0
3.6
EPSS
0.0%
HP LaserJet M4555, M525, and M725; LaserJet flow MFP M525c; LaserJet Enterprise color flow MFP M575c; Color LaserJet CM4540, M575, and M775; and ScanJet Enterprise 8500fn1 FutureSmart devices allow. Rated low severity (CVSS 1.5). No vendor patch available.
Information Disclosure
HP
Color Laserjet Cm4540
Color Laserjet Cm4540F
Color Laserjet Cm4540Fskm
+17
NVD
CVSS 2.0
1.5
EPSS
0.1%