CVE-2015-5228
HIGH7.8EPSS 0.05%Published: 6/7/2016Modified: 4/28/2026
Description
The service daemon in CRIU creates log and dump files insecurely, which allows local users to create arbitrary files and take ownership of existing files via unspecified vectors related to a directory path.
Affected packages (1)
- Debian/criufrom 0, < 1.8-2
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | HIGH7.8 | CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |