Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
rosalinuxROSA LABROSA-SA-2024-2469
HistoryAug 20, 2024 - 11:36 a.m.

Advisory ROSA-SA-2024-2469

2024-08-2011:36:45
ROSA LAB
abf.rosalinux.ru
4
pcs
rosa-chrome
vulnerability
authentication
exploitation
privileges
resolved
update command
unix

CVSS2

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

7.7

Confidence

High

JSON

software: pcs 0.10.7
WASP: ROSA-CHROME

package_evr_string: pcs-0.10.7-5

CVE-ID: CVE-2022-1049
BDU-ID: 2022-05543
CVE-Crit: HIGH
CVE-DESC.: A vulnerability in the corosync/pacemaker PCS program configuration utility is related to flaws in the authentication procedure. Exploitation of the vulnerability could allow an attacker acting remotely to elevate their privileges
CVE-STATUS: Resolved
CVE-REV: To close, run the command: sudo dnf update pcs

OSVersionArchitecturePackageVersionFilename
ROSAanynoarchpcs< 0.10.7UNKNOWN

Related

cgr 1
cbl_mariner 3
prion 2
redhatcve 2
osv 9
nessus 27
veracode 2
alpinelinux 1
nvd 2
cve 2
debiancve 2
cvelist 2
openvas 15
ubuntucve 2
wolfi 1
rocky 2
oraclelinux 2
redhat 2
redos 1
debian 2
almalinux 2
huntr 1
mageia 2
archlinux 1
suse 2
fedora 6
rosalinux 2
ubuntu 1
gentoo 1
cloudfoundry 1
freebsd 1
photon 4
cgr
cgr
CVE-2018-6951 vulnerabilities
2024-05-19 03:07:16
cbl_mariner
cbl_mariner
CVE-2018-6951 affecting package patch for versions less than 2.7.6-9
2024-03-19 17:21:46
CVE-2018-6951 affecting package patch for versions less than 2.7.6-7
2022-04-09 06:51:43
CVE-2018-6951 affecting package patch 2.7.6-7
2020-09-09 06:09:14
prion
prion
Null pointer dereference
2018-02-13 19:29:00
Design/Logic Flaw
2022-03-25 19:15:00
redhatcve
redhatcve
CVE-2018-6951
2018-02-14 07:19:13
CVE-2022-1049
2022-03-22 11:33:26
osv
osv
CVE-2018-6951
2018-02-13 19:29:00
CGA-xx5r-h9wv-p9f9
2024-06-06 12:30:05
Moderate: pcs security, bug fix, and enhancement update
2022-11-08 00:00:00
nessus
nessus
Photon OS 1.0: Patch PHSA-2018-1.0-0126
2019-02-07 00:00:00
EulerOS 2.0 SP3 : patch (EulerOS-SA-2021-1827)
2021-04-30 00:00:00
CBL Mariner 2.0 Security Update: patch (CVE-2018-6951)
2024-07-03 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-05-10 23:24:56
Privilege Escalation
2022-07-10 21:09:46
alpinelinux
alpinelinux
CVE-2018-6951
2018-02-13 19:29:00
nvd
nvd
CVE-2018-6951
2018-02-13 19:29:00
CVE-2022-1049
2022-03-25 19:15:10
cve
cve
CVE-2018-6951
2018-02-13 19:29:00
CVE-2022-1049
2022-03-25 19:15:10
debiancve
debiancve
CVE-2018-6951
2018-02-13 19:29:00
CVE-2022-1049
2022-03-25 19:15:10
cvelist
cvelist
CVE-2018-6951
2018-02-13 19:00:00
CVE-2022-1049
2022-03-25 18:03:01
openvas
openvas
Huawei EulerOS: Security Advisory for patch (EulerOS-SA-2021-1827)
2021-05-03 00:00:00
Huawei EulerOS: Security Advisory for patch (EulerOS-SA-2019-2343)
2020-01-23 00:00:00
Debian: Security Advisory (DLA-3108-1)
2022-09-15 00:00:00
ubuntucve
ubuntucve
CVE-2018-6951
2018-02-13 00:00:00
CVE-2022-1049
2022-03-25 00:00:00
wolfi
wolfi
CVE-2018-6951 vulnerabilities
2024-09-16 09:11:42
rocky
rocky
pcs security, bug fix, and enhancement update
2022-11-08 06:19:58
pcs security, bug fix, and enhancement update
2022-11-15 06:11:42
oraclelinux
oraclelinux
pcs security update
2022-11-29 00:00:00
pcs security update
2022-11-22 00:00:00
redhat
redhat
(RHSA-2022:7935) Moderate: pcs security, bug fix, and enhancement update
2022-11-15 06:11:42
(RHSA-2022:7447) Moderate: pcs security, bug fix, and enhancement update
2022-11-08 06:19:58
redos
redos
ROS-20240731-04
2024-07-31 00:00:00
debian
debian
[SECURITY] [DLA 3108-1] pcs security update
2022-09-14 22:07:50
[SECURITY] [DSA 5226-1] pcs security update
2022-09-06 20:35:09
almalinux
almalinux
Moderate: pcs security, bug fix, and enhancement update
2022-11-15 00:00:00
Moderate: pcs security, bug fix, and enhancement update
2022-11-08 00:00:00
huntr
huntr
Improper Authorization
2022-03-07 13:21:09
mageia
mageia
Updated patch packages fix security vulnerabilities
2018-11-16 01:04:32
Updated patch packages fix security vulnerabilities
2018-06-14 21:14:36
archlinux
archlinux
[ASA-201810-8] patch: multiple issues
2018-10-09 00:00:00
suse
suse
Security update for patch (important)
2018-05-03 12:08:24
Security update for patch (important)
2018-05-02 21:08:01
fedora
fedora
[SECURITY] Fedora 28 Update: patch-2.7.6-5.fc28
2018-10-15 10:47:23
[SECURITY] Fedora 27 Update: patch-2.7.6-3.fc27
2018-02-20 17:21:04
[SECURITY] Fedora 26 Update: patch-2.7.6-3.fc26
2018-03-20 17:37:23
rosalinux
rosalinux
Advisory ROSA-SA-2024-2468
2024-08-12 13:09:24
Advisory ROSA-SA-2021-1946
2021-07-02 17:39:56
ubuntu
ubuntu
Patch vulnerabilities
2018-04-10 00:00:00
gentoo
gentoo
Patch: Multiple vulnerabilities
2019-04-17 00:00:00
cloudfoundry
cloudfoundry
USN-3624-1: Patch vulnerabilities | Cloud Foundry
2018-05-09 00:00:00
freebsd
freebsd
patch -- multiple vulnerabilities
2018-04-16 00:00:00
photon
photon
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2018-2.0-0037
2018-04-23 00:00:00
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2018-1.0-0126
2018-04-24 00:00:00
Critical Photon OS Security Update - PHSA-2018-0126
2018-04-24 00:00:00

CVSS2

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

7.7

Confidence

High

JSON
Related for ROSA-SA-2024-2469
cgr1cbl_mariner3prion2redhatcve2osv9nessus27veracode2alpinelinux1nvd2cve2debiancve2cvelist2openvas15ubuntucve2wolfi1rocky2oraclelinux2redhat2redos1debian2almalinux2huntr1mageia2archlinux1suse2fedora6rosalinux2ubuntu1gentoo1cloudfoundry1freebsd1photon4