AVG-1367 log
| Package | osquery |
| Status | Fixed |
| Severity | Medium |
| Type | arbitrary filesystem access |
| Affected | 4.5.1-8 |
| Fixed | 4.6.0-1 |
| Current | 5.20.0-1 [extra] |
| Ticket | None |
| Created | Wed Dec 16 16:03:58 2020 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2020-26273 | Medium | No | Arbitrary filesystem access | In osquery before version 4.6.0, by using sqlite's ATTACH verb, someone with administrative access to osquery can cause reads and writes to arbitrary sqlite... |