CVE-2020-21583

CVSS 3.1 Score 6.7 of 10 (medium)

Details

Published Aug 22, 2023

Updated: Aug 28, 2023

Summary

CVE-2020-21583 is a vulnerability affecting the hwclock package version 2.27. This issue enables attackers to exploit the path parameter in the date-setting functionality, resulting in escalated privileges or code execution. By manipulating the date-setting command, cybercriminals can bypass security restrictions and gain unauthorized access to critical system functions. This vulnerability may lead to significant security risks if not addressed promptly. System administrators are advised to update their hwclock packages to the latest version to mitigate this threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Linux Kernel Organization

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sbEkBd
https://www.cve.org/CVERecord?id=CVE-2020-21583
https://nvd.nist.gov/vuln/detail/CVE-2020-21583

Back to Vulnerability Database

CVE-2020-21583

CVSS 3.1 Score 6.7 of 10 (medium)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations