Let's say that a vulnerability allowed for RCE as the user "nobody". And said platform includes a setuid binary that allows anyone to run programs as root. How would you assign a CVSS score for the RCE?
-
-
I mean if you can privesc with the tools at hand from nobody to root that's a vulnerability on its own IMHO. Getting there with the RCE is just another vector to trigger that bug.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
From what I’ve seen no, nuance is lost in the pie charts shown to the decision makers. Business people just want a number saying how scary a vuln is.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.