EUVD-2007-4058

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

CSTR Festival default configuration allows unauthorized command execution by local and remote attackers

Reporter	Title	Published	Views	Family All 14
CVE	CVE-2007-4074	30 Jul 200717:00	–	cve
Cvelist	CVE-2007-4074	30 Jul 200717:00	–	cvelist
Debian CVE	CVE-2007-4074	30 Jul 200717:00	–	debiancve
NVD	CVE-2007-4074	30 Jul 200717:30	–	nvd
OpenVAS	Gentoo Security Advisory GLSA 200707-10 (festival)	24 Sep 200800:00	–	openvas
OpenVAS	SLES10: Security update for festival	13 Oct 200900:00	–	openvas
OpenVAS	Gentoo Security Advisory GLSA 200707-10 (festival)	24 Sep 200800:00	–	openvas
OpenVAS	SLES10: Security update for festival	13 Oct 200900:00	–	openvas
OSV	DEBIAN-CVE-2007-4074	30 Jul 200717:30	–	osv
Prion	Default configuration	30 Jul 200717:30	–	prion

[
  {
    "enisaIdVendor": [
      {
        "id": "381a0ae1-5d9b-32b3-89f6-5a328ea67336",
        "vendor": {
          "name": "n/a"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "6c0b964d-f2ae-3559-81d9-371d9605df29",
        "product": {
          "name": "n/a"
        },
        "product_version": "n/a"
      }
    ]
  }
]

Source	Link
suse	www.suse.com/security/cve/CVE-2007-4074.html
secunia	www.secunia.com/advisories/27271
securityfocus	www.securityfocus.com/archive/1/490465/100/0/threaded
securityfocus	www.securityfocus.com/bid/25069
security	www.security.gentoo.org/glsa/glsa-200707-10.xml
secunia	www.secunia.com/advisories/26229
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/35606
lists	www.lists.opensuse.org/opensuse-security-announce/2007-10/msg00006.html
bugs	www.bugs.gentoo.org/show_bug.cgi
github	www.github.com/advisories/GHSA-293c-r3p4-g63r

07 Oct 2025 00:30Current

6.1Medium risk

Vulners AI Score6.1

CVSS 210

EPSS0.01942

cstr festival vulnerability elevated privileges command execution local remote attackers