Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2013-1813HistoryNov 23, 2013 - 11:55 a.m.
CVE-2013-1813
2013-11-2311:55:00
Debian Security Bug Tracker
security-tracker.debian.org
12
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.0004 Low
EPSS
Percentile
5.2%
util-linux/mdev.c in BusyBox before 1.21.0 uses 0777 permissions for parent directories when creating nested directories under /dev/, which allows local users to have unknown impact and attack vectors.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | busybox | < 1:1.20.0-8 | busybox_1:1.20.0-8_all.deb |
| Debian | 11 | all | busybox | < 1:1.20.0-8 | busybox_1:1.20.0-8_all.deb |
| Debian | 10 | all | busybox | < 1:1.20.0-8 | busybox_1:1.20.0-8_all.deb |
| Debian | 999 | all | busybox | < 1:1.20.0-8 | busybox_1:1.20.0-8_all.deb |
| Debian | 13 | all | busybox | < 1:1.20.0-8 | busybox_1:1.20.0-8_all.deb |
Related
veracode
veracode
Insecure File Permissions
2019-01-15 08:51:59
nessus
nessus
Oracle Linux 6 : busybox (ELSA-2013-1732)
2013-11-27 00:00:00
RHEL 6 : busybox (RHSA-2013:1732)
2013-11-21 00:00:00
CentOS 6 : busybox (CESA-2013:1732)
2014-11-12 00:00:00
openvas
openvas
Oracle: Security Advisory (ELSA-2013-1732)
2015-10-06 00:00:00
RedHat Update for busybox RHSA-2013:1732-02
2013-11-21 00:00:00
RedHat Update for busybox RHSA-2013:1732-02
2013-11-21 00:00:00
prion
prion
Code injection
2013-11-23 11:55:00
cve
cve
CVE-2013-1813
2013-11-23 11:55:00
ubuntucve
ubuntucve
CVE-2013-1813
2013-11-23 00:00:00
redhat
redhat
(RHSA-2013:1732) Low: busybox security and bug fix update
2013-11-21 00:00:00
(RHSA-2013:1527) Important: rhev-hypervisor6 security and bug fix update
2013-11-21 00:00:00
oraclelinux
oraclelinux
busybox security and bug fix update
2013-11-25 00:00:00
centos
centos
busybox security update
2013-11-26 13:31:11
mageia
mageia
Updated busybox package fixes security vulnerability
2013-12-01 01:33:39
gentoo
gentoo
BusyBox: Multiple vulnerabilities
2013-12-03 00:00:00
packetstorm
packetstorm
Phoenix Contact TC Router / TC Cloud Client Command Injection
2020-03-14 00:00:00
ZTE Mobile Hotspot MS910S Backdoor / Hardcoded Password
2020-08-27 00:00:00
debian
debian
[SECURITY] [DLA 1445-1] busybox security update
2018-07-27 04:40:00
[SECURITY] [DLA 2559-1] busybox security update
2021-02-15 11:57:08
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.0004 Low
EPSS
Percentile
5.2%
Related for DEBIANCVE:CVE-2013-1813