Local Privilege Escalation in top

Local Privilege Escalation in top

CVE-2018-1122 · MEDIUM Severity

AV:L/AC:M/AU:N/C:P/I:P/A:P

procps-ng before version 3.3.15 is vulnerable to a local privilege escalation in top. If a user runs top with HOME unset in an attacker-controlled directory, the attacker could achieve privilege escalation by exploiting one of several vulnerabilities in the config_file() function.

Learn more about our User Device Pen Test.