CVE-2023-6917 — MEDIUM (6.0)

Q: How severe is CVE-2023-6917?

CVE-2023-6917 has been rated MEDIUM with a CVSS base score of 6.0/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2023-6917?

Check the references section above for vendor advisories and patch information. Affected products include: Sgi Performance Co-Pilot, Redhat Enterprise Linux.

Vulnerability Description

A vulnerability has been identified in the Performance Co-Pilot (PCP) package, stemming from the mixed privilege levels utilized by systemd services associated with PCP. While certain services operate within the confines of limited PCP user/group privileges, others are granted full root privileges. This disparity in privilege levels poses a risk when privileged root processes interact with directories or directory trees owned by unprivileged PCP users. Specifically, this vulnerability may lead to the compromise of PCP user isolation and facilitate local PCP-to-root exploits, particularly through symlink attacks. These vulnerabilities underscore the importance of maintaining robust privilege separation mechanisms within PCP to mitigate the potential for unauthorized privilege escalation.

CVSS Score

6.0

MEDIUM

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

NONE

Affected Products

Vendor	Product	Versions
Sgi	Performance Co-Pilot	< 6.2.0
Redhat	Enterprise Linux	9.0

Related Weaknesses (CWE)

CWE-367

References

https://access.redhat.com/errata/RHSA-2024:2213Third Party Advisory
https://access.redhat.com/security/cve/CVE-2023-6917Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2254983Issue TrackingThird Party Advisory
https://access.redhat.com/errata/RHSA-2024:2213Third Party Advisory
https://access.redhat.com/security/cve/CVE-2023-6917Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2254983Issue TrackingThird Party Advisory

FAQ

What is CVE-2023-6917?

CVE-2023-6917 is a vulnerability with a CVSS score of 6.0 (MEDIUM). A vulnerability has been identified in the Performance Co-Pilot (PCP) package, stemming from the mixed privilege levels utilized by systemd services associated with PCP. While certain services operate...

How severe is CVE-2023-6917?

CVE-2023-6917 has been rated MEDIUM with a CVSS base score of 6.0/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2023-6917?

Check the references section above for vendor advisories and patch information. Affected products include: Sgi Performance Co-Pilot, Redhat Enterprise Linux.