Lucene search

CVE-2017-18240

🗓️ 19 Mar 2018 02:00:29Reported by mitreType

The Gentoo app-admin/collectd package before 5.7.2-r1 sets the ownership of PID file directory to the collectd account, which might allow local users to kill arbitrary processes

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 8
debiancve	CVE-2017-18240	19 Mar 201802:29	–	debiancve
ubuntucve	CVE-2017-18240	19 Mar 201800:00	–	ubuntucve
cvelist	CVE-2017-18240	19 Mar 201802:00	–	cvelist
prion	Arbitrary file deletion	19 Mar 201802:29	–	prion
osv	CVE-2017-18240	19 Mar 201802:29	–	osv
nvd	CVE-2017-18240	19 Mar 201802:29	–	nvd
nessus	GLSA-201803-10 : collectd: Multiple vulnerabilities	22 Mar 201800:00	–	nessus
gentoo	collectd: Multiple vulnerabilities	22 Mar 201800:00	–	gentoo

Nvd

Node

collectd collectdRange≤5.7.2

Node

collectd collectdMatch5.7.2r1

Source	Link
security	www.security.gentoo.org/glsa/201803-10
bugs	www.bugs.gentoo.org/628540
securityfocus	www.securityfocus.com/bid/103469

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

19 Mar 2018 02:29Current

5.7Medium risk

Vulners AI Score5.7

CVSS24.9

CVSS35.5

EPSS0.0004

CWE-20