ppc64-diag 2.6.1 uses 0775 permissions for /tmp/diagSEsnap and does not properly restrict permissions for /tmp/diagSEsnap/snapH.tar.gz, which allows local users to obtain sensitive information by. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. No vendor patch available.
Privilege Escalation
Enterprise Linux Server
Ppc64 Diag
Linux Enterprise Server
NVD
CVSS 2.0
2.1
EPSS
0.1%