Description
read_tmp and write_tmp in Inteno IOPSYS allow attackers to gain privileges after writing to /tmp/etc/smb.conf because /var is a symlink to /tmp.
Exploits (1)
Scores
CVSS v3
7.8
EPSS
0.0170
EPSS Percentile
82.4%
Attack Vector
LOCAL
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Details
Status
published
Products (1)
intenogroup/iopsys_firmware
Published
Jul 31, 2018
Tracked Since
Feb 18, 2026