CVE-2021-31997 – a UNIX Symbolic Link (Symlink) Following vulnerability in python-postorius of openSUSE Lea …

Vuln ID: CVE-2021-31997

Published:  2021-06-10  12:15:08Z

Description: a UNIX Symbolic Link (Symlink) Following vulnerability in python-postorius of openSUSE Leap 15.2, Factory allows local attackers to escalate from users postorius or postorius-admin to root. This issue affects: openSUSE Leap 15.2 python-postorius version 1.3.2-lp152.1.2 and prior versions. openSUSE Factory python-postorius version 1.3.4-2.1 and prior versions.

Source: NVD.NIST.GOV