Lucene search

PRIOn knowledge basePRION:CVE-2013-1068

HistoryJun 19, 2014 - 3:55 p.m.

Design/Logic Flaw

2014-06-1915:55:00

PRIOn knowledge base

www.prio-n.com

7 High

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

0.001 Low

EPSS

Percentile

47.8%

JSON

The OpenStack Nova (python-nova) package 1:2013.2.3-0 before 1:2013.2.3-0ubuntu1.2 and 1:2014.1-0 before 1:2014.1-0ubuntu1.2 and Openstack Cinder (python-cinder) package 1:2013.2.3-0 before 1:2013.2.3-0ubuntu1.1 and 1:2014.1-0 before 1:2014.1-0ubuntu1.1 for Ubuntu 13.10 and 14.04 LTS does not properly set the sudo configuration, which makes it easier for attackers to gain privileges by leveraging another vulnerability.

CPENameOperatorVersion
ubuntu_linuxeq13.10
ubuntu_linuxeq14.04

CPE	Name	Operator	Version
	ubuntu_linux	eq	13.10
	ubuntu_linux	eq	14.04

References

ubuntu.com/usn/usn-2248-1

www.ubuntu.com/usn/USN-2247-1

7 High

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

0.001 Low

EPSS

Percentile

47.8%

JSON

Related for PRION:CVE-2013-1068