Local users can perform a denial of service in Tripwire 1.2 and earlier using long filenames.
7AI Score
0.0004EPSS
Tripwire 1.3.1, 2.2.1 and 2.3.0 allows local users to overwrite arbitrary files and possible gain privileges via a symbolic link attack on temporary files.
6.6AI Score
0.0004EPSS
Format string vulnerability in Tripwire commercial 4.0.1 and earlier, including 2.4, and open source 2.3.1 and earlier, allows local users to gain privileges via format string specifiers in a file name, which is used in the generation of an email report.
6.2AI Score
0.593EPSS