Lucene search
HistoryNov 19, 2015 - 8:59 p.m.
CVE-2015-0794
cve-2015-0794
dracut package
symlink attack
opensuse 13.2
local users
nvd
6.5 Medium
AI Score
Confidence
Low
3.6 Low
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:N/I:P/A:P
0.0004 Low
EPSS
Percentile
5.1%
modules.d/90crypt/module-setup.sh in the dracut package before 037-17.30.1 in openSUSE 13.2 allows local users to have unspecified impact via a symlink attack on /tmp/dracut_block_uuid.map.
Affected configurations
Node
dracut_projectdracutRange<037-17.30.1
opensuseopensuseMatch13.2
| CPE | Name | Operator | Version |
|---|---|---|---|
| dracut_project:dracut | dracut project dracut | lt | 037-17.30.1 |
Related
debiancve
debiancve
CVE-2015-0794
2015-11-19 20:59:02
nessus
nessus
openSUSE Security Update : dracut (openSUSE-2015-765)
2015-11-19 00:00:00
SUSE SLED12 / SLES12 Security Update : dracut (SUSE-SU-2015:2065-1)
2015-11-24 00:00:00
nvd
nvd
CVE-2015-0794
2015-11-19 20:59:02
prion
prion
Code injection
2015-11-19 20:59:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2015:2065-1)
2021-04-19 00:00:00
cvelist
cvelist
CVE-2015-0794
2015-11-19 20:00:00
ubuntucve
ubuntucve
CVE-2015-0794
2015-11-19 00:00:00
6.5 Medium
AI Score
Confidence
Low
3.6 Low
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:N/I:P/A:P
0.0004 Low
EPSS
Percentile
5.1%
Related for CVE-2015-0794