Vulners
Lucene search
A flaw was found in pesign. The pesign package provides a systemd service used to start the pesign daemon. This service unit runs a script to set ACLs for /etc/pki/pesign and /run/pesign directories to grant access privileges to users in the 'pesign' group. However, the script doesn't check for symbolic links. This could allow an attacker to gain access to privileged files and directories via a path traversal attack.
| Reporter | Title | Published | Views | Family All 98 |
|---|---|---|---|---|
 | Amazon Linux 2023 : pesign (ALAS2023-2023-118) | 21 Mar 202300:00 | – | nessus |
| Alibaba Cloud Linux 3 : 0034: pesign (ALINUX3-SA-2023:0034) | 14 May 202500:00 | – | nessus |
| AlmaLinux 9 : pesign (ALSA-2023:1067) | 7 Mar 202300:00 | – | nessus |
| AlmaLinux 8 : pesign (ALSA-2023:1572) | 5 Apr 202300:00 | – | nessus |
| CentOS 9 : pesign-115-6.el9 | 29 Feb 202400:00 | – | nessus |
| CentOS 7 : pesign (RHSA-2023:1093) | 9 Mar 202300:00 | – | nessus |
| Fedora 36 : pesign (2023-5399953e3b) | 9 Feb 202300:00 | – | nessus |
| Fedora 37 : pesign (2023-e77628f240) | 9 Feb 202300:00 | – | nessus |
| MiracleLinux 9 : pesign-115-6.el9.ML.1 (AXSA:2023-5201:02) | 20 Jan 202600:00 | – | nessus |
| MiracleLinux 7 : pesign-0.109-11.el7 (AXSA:2023-5211:03) | 20 Jan 202600:00 | – | nessus |
10
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
02 Oct 2025 06:11Current
7High risk
Vulners AI Score7
CVSS 3.15.5
EPSS0.00033
SSVC