Description
A vulnerability was found in systemd. This security flaw can cause a local information leak due to systemd-coredump not respecting the fs.suid_dumpable kernel setting.
References (4)
Core 4
Core References
Exploit, Patch, Third Party Advisory
https://github.com/systemd/systemd/commit/b7641425659243c09473cd8fb3aef2c0d4a3eb9c
Mailing List, Third Party Advisory
https://www.openwall.com/lists/oss-security/2022/12/21/3
Vendor Advisory
https://security.netapp.com/advisory/ntap-20230216-0010/
Mailing List
http://seclists.org/fulldisclosure/2025/Jun/9
Scores
CVSS v3
5.5
EPSS
0.0003
EPSS Percentile
9.5%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
no
Technical Impact
partial
Details
CWE
CWE-200
Status
published
Products (1)
systemd_project/systemd
246 - 253
Published
Jan 11, 2023
Tracked Since
Feb 18, 2026