CVE-2021-36781

MEDIUM

openSUSE Factory parsec < 0.8.1-1.1 - Incorrect Default Permissions

Title source: llm
STIX 2.1

Description

A Incorrect Default Permissions vulnerability in the parsec package of openSUSE Factory allows local attackers to imitate the service leading to DoS or clients talking to an imposter service. This issue affects: openSUSE Factory parsec versions prior to 0.8.1-1.1.

References (1)

Core 1
Core References
Exploit, Issue Tracking, Patch, Third Party Advisory x_refsource_confirm
https://bugzilla.suse.com/show_bug.cgi?id=1193484

Scores

CVSS v3 5.9
EPSS 0.0003
EPSS Percentile 9.5%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Details

CWE
CWE-276
Status published
Products (1)
opensuse/factory < 0.8.1-1.1
Published Jan 14, 2022
Tracked Since Feb 18, 2026