libvdpau before 1.1.1, when used in a setuid or setgid application, allows local users to gain privileges via unspecified vectors, related to the VDPAU_DRIVER_PATH environment variable. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity. No vendor patch available.
Privilege Escalation
Libvdpau
Ubuntu Linux
NVD
CVSS 2.0
7.2
EPSS
0.1%
Directory traversal vulnerability in dlopen in libvdpau before 1.1.1 allows local users to gain privileges via the VDPAU_DRIVER environment variable. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity. No vendor patch available.
Path Traversal
Ubuntu Linux
Libvdpau
NVD
CVSS 2.0
7.2
EPSS
0.0%