AVG-1367 log

Package osquery
Status Fixed
Severity Medium
Type arbitrary filesystem access
Affected 4.5.1-8
Fixed 4.6.0-1
Current 5.0.1-3 [community]
Ticket None
Created Wed Dec 16 16:03:58 2020
Issue Severity Remote Type Description
CVE-2020-26273 Medium No Arbitrary filesystem access
In osquery before version 4.6.0, by using sqlite's ATTACH verb, someone with administrative access to osquery can cause reads and writes to arbitrary sqlite...