
Find real vulnerabilities before they ship
A vulnerability was found in Performance Co-Pilot (PCP). This flaw can only be exploited if an attacker has access to a compromised PCP system account. The issue is related to the pmpost tool, which is used to log messages in the system. Under certain conditions, it runs with high-level privileges.
Base Score
4.4| Base Score | 4.4 |
|---|---|
| Vector String | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N |
| Base Severity | Medium |
| Version | 3.1 |
| Attack Vector (AV) | LOCAL |