fish (aka fish-shell) 1.16.0 prior to 2.1.1 does not properly check the credentials, which allows local users to gain privileges via the universal variable socket, related to /tmp/fishd.socket.user permissions.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
fishshell fish 1.16.0 |
||
fishshell fish 2.0.0 |