The replay-sorcery program in ReplaySorcery 0.4.0 through 0.5.0, when using the default setuid-root configuration, allows a local attacker to escalate privileges to root by specifying video output paths in privileged locations.
{ "cpe": "cpe:2.3:a:replaysorcery_project:replaysorcery:*:*:*:*:*:*:*:*", "extracted_events": [ { "introduced": "0.4.0" }, { "last_affected": "0.5.0" } ], "source": "CPE_RANGE" }
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-26936.json"