Lucene search
HistoryMay 08, 2014 - 10:55 a.m.
CVE-2014-0595
cve-2014-0595
novell client
linux
open enterprise server
oes 11
nvd
security vulnerability
6.3 Medium
AI Score
Confidence
Low
2.6 Low
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:H/Au:N/C:P/I:P/A:N
0.001 Low
EPSS
Percentile
30.5%
/opt/novell/ncl/bin/nwrights in Novell Client for Linux in Novell Open Enterprise Server (OES) 11 Linux SP2 does not properly manage a certain array, which allows local users to obtain the S permission in opportunistic circumstances by leveraging the granting of the F permission by an administrator.
Affected configurations
Node
novellopen_enterprise_serverMatch11.0sp2linux_kernel
| CPE | Name | Operator | Version |
|---|---|---|---|
| novell:open_enterprise_server | novell open enterprise server | eq | 11.0 |
Related
suse
suse
Security update for novell-qtgui, novell-ui-base (important)
2014-06-26 01:04:17
openvas
openvas
SUSE: Security Advisory for novell-qtgui (SUSE-SU-2014:0847-1)
2015-10-15 00:00:00
prion
prion
Open redirect
2014-05-08 10:55:00
nessus
nessus
nvd
nvd
CVE-2014-0595
2014-05-08 10:55:03
cvelist
cvelist
CVE-2014-0595
2014-05-08 10:00:00
6.3 Medium
AI Score
Confidence
Low
2.6 Low
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:H/Au:N/C:P/I:P/A:N
0.001 Low
EPSS
Percentile
30.5%
Related for CVE-2014-0595