Lucene search

[email protected]NVD:CVE-2015-3150

HistoryJan 14, 2020 - 6:15 p.m.

CVE-2015-3150

2020-01-1418:15:10

CWE-20

[email protected]

web.nvd.nist.gov

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

CVSS3

7.1

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

AI Score

6.8

Confidence

High

EPSS

Percentile

5.1%

JSON

abrt-dbus in Automatic Bug Reporting Tool (ABRT) allows local users to delete or change the ownership of arbitrary files via the problem directory argument to the (1) ChownProblemDir, (2) DeleteElement, or (3) DeleteProblem method.

Affected configurations

Nvd

Node

redhatautomatic_bug_reporting_toolMatch-

References

bugzilla.redhat.com/show_bug.cgi?id=1214457

github.com/abrt/abrt/commit/6e811d78e2719988ae291181f5b133af32ce62d8

github.com/abrt/abrt/commit/7814554e0827ece778ca88fd90832bd4d05520b1

github.com/abrt/abrt/commit/b7f8bd20b7fb5b72f003ae3fa647c1d75f4218b7

github.com/abrt/libreport/commit/1951e7282043dfe1268d492aea056b554baedb75

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

CVSS3

7.1

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

AI Score

6.8

Confidence

High

EPSS

Percentile

5.1%

JSON

Related for NVD:CVE-2015-3150

cvelist1 cve1 prion1 fedora7 openvas10 nessus6 redhat1 centos1 oraclelinux1