DescriptionKDAB Hotspot 1.3.x and 1.4.x through 1.4.1, in a non-default configuration, allows privilege escalation because of race conditions involving symlinks and elevate_perf_privileges.sh chown calls.
Overall state of this security issue: Does not affect SUSE products
This issue is currently rated as having moderate severity.
|National Vulnerability Database
List of released packages
|Fixed package version(s)
openSUSE Tumbleweed GA hotspot-1.4.1-1.1
SUSE Timeline for this CVECVE page created: Mon Mar 13 12:30:10 2023
CVE page last modified: Tue May 2 12:05:26 2023