Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
debiancveDebian Security Bug TrackerDEBIANCVE:CVE-2017-14483
HistorySep 15, 2017 - 10:29 a.m.

CVE-2017-14483

2017-09-1510:29:00
Debian Security Bug Tracker
security-tracker.debian.org
14

EPSS

0

Percentile

5.1%

JSON

flower.initd in the Gentoo dev-python/flower package before 0.9.1-r1 for Celery Flower sets PID file ownership to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-root account for PID file modification before a root script executes a “kill cat /pathname” command.

OSVersionArchitecturePackageVersionFilename
Debian9allflower< 0.8.3+dfsg-2flower_0.8.3+dfsg-2_all.deb

Related

cve 1
ubuntucve 1
cvelist 1
prion 1
nvd 1
cve
cve
CVE-2017-14483
2017-09-15 10:29:00
ubuntucve
ubuntucve
CVE-2017-14483
2017-09-15 00:00:00
cvelist
cvelist
CVE-2017-14483
2017-09-15 10:00:00
prion
prion
Command injection
2017-09-15 10:29:00
nvd
nvd
CVE-2017-14483
2017-09-15 10:29:00

EPSS

0

Percentile

5.1%

JSON
Related for DEBIANCVE:CVE-2017-14483
cve1ubuntucve1cvelist1prion1nvd1