Privilege Escalation Vulnerability in AMD fglrx Driver
CVE-2015-7724

7.8HIGH

Key Information:

Vendor
Amd
Status
Fglrx-driver
Vendor
CVE Published:
7 June 2017

Summary

The AMD fglrx driver prior to version 15.9 is susceptible to a vulnerability that allows local users to exploit symlink attacks, thereby gaining elevated privileges. This issue arises due to insufficient remediation of a previous vulnerability, specifically CVE-2015-7723. It exposes the system to unauthorized access, impacting security integrity and user control.

References

http://packetstormsecurity.com/files/134120/AMD-fglrx-dri...
x_refsource_MISC
https://www.portcullis-security.com/security-research-and...
x_refsource_MISC
http://www.securityfocus.com/archive/1/536782/100/0/threaded
mailing-listx_refsource_BUGTRAQ

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.