← Back

Replaysorcery

replaysorcery

Vendor: Replaysorcery Project • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2021-36983
1Replaysorcery Project
1Replaysorcery
Nov 21, 2024
Jul 30, 2021
N/A· v4
7.8 HIGH· v3
7.2 HIGH· v2
replay-sorcery-kms in Replay Sorcery 0.6.0 allows a local attacker to gain root privileges via a symlink attack on /tmp/replay-sorcery or /tmp/replay-sorcery/device.sock.
CVE-2021-26936
1Replaysorcery Project
1Replaysorcery
Nov 21, 2024
Feb 10, 2021
N/A· v4
7.8 HIGH· v3
7.2 HIGH· v2
The replay-sorcery program in ReplaySorcery 0.4.0 through 0.5.0, when using the default setuid-root configuration, allows a local attacker to escalate privileges to root by specifying video output paths in privileged loc...Show more
The replay-sorcery program in ReplaySorcery 0.4.0 through 0.5.0, when using the default setuid-root configuration, allows a local attacker to escalate privileges to root by specifying video output paths in privileged locations.Show less