Lucene search

[email protected]NVD:CVE-2012-4510

HistoryNov 20, 2012 - 12:55 a.m.

CVE-2012-4510

2012-11-2000:55:01

CWE-264

[email protected]

web.nvd.nist.gov

5.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

6.2 Medium

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

65.9%

JSON

cups-pk-helper before 0.2.3 does not properly wrap the (1) cupsGetFile and (2) cupsPutFile function calls, which allows user-assisted remote attackers to read or overwrite sensitive files using CUPS resources.

Affected configurations

NVD

Node

cups-pk-helper_projectcups-pk-helperRange≤0.2.2

cups-pk-helper_projectcups-pk-helperMatch0.0.1

cups-pk-helper_projectcups-pk-helperMatch0.0.2

cups-pk-helper_projectcups-pk-helperMatch0.0.3

cups-pk-helper_projectcups-pk-helperMatch0.0.4

cups-pk-helper_projectcups-pk-helperMatch0.1.0

cups-pk-helper_projectcups-pk-helperMatch0.1.1

cups-pk-helper_projectcups-pk-helperMatch0.1.2

cups-pk-helper_projectcups-pk-helperMatch0.1.3

cups-pk-helper_projectcups-pk-helperMatch0.2.0

cups-pk-helper_projectcups-pk-helperMatch0.2.1

References

www.debian.org/security/2012/dsa-2562

www.mandriva.com/security/advisories?name=MDVSA-2013:069

www.openwall.com/lists/oss-security/2012/10/12/2

5.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

6.2 Medium

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

65.9%

JSON

Related for NVD:CVE-2012-4510

nessus6 openvas6 fedora3 securityvulns2 cve1 ubuntucve1 prion1 cvelist1 osv1 debian1 debiancve1