Lucene search
K

14 matches found

Veracode
Veracode
added 2021/05/21 2:1 p.m.30 views

Insecure Permissions

trousers uses insecure permissions. A tss user has read and write access to the /etc/tcsd.conf file even if the tcsd daemon is started with root privileges...

7.8CVSS4AI score0.00486EPSS
Exploits1References11Affected Software1
RedHat Linux
RedHat Linux
added 2021/05/18 3:38 p.m.3 views

trousers: tss user still has read and write access to the /etc/tcsd.conf file if tcsd is started as root

An issue was discovered in TrouSerS through 0.3.14. If the tcsd daemon is started with root privileges, the tss user still has read and write access to the /etc/tcsd.conf file which contains various settings related to this daemon...

7.8CVSS7.3AI score0.00486EPSS
Exploits1References5
OpenVAS
OpenVAS
added 2021/03/12 12:0 a.m.19 views

Huawei EulerOS: Security Advisory for trousers (EulerOS-SA-2021-1628)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.5AI score0.00553EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2021/03/10 12:0 a.m.25 views

EulerOS Virtualization 2.9.1 : trousers (EulerOS-SA-2021-1628)

According to the versions of the trousers package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - An issue was discovered in TrouSerS through 0.3.14. If the tcsd daemon is started with root privileges, the creation of the...

7.8CVSS6.8AI score0.00553EPSS
Exploits3References4
OpenVAS
OpenVAS
added 2021/03/05 12:0 a.m.21 views

Huawei EulerOS: Security Advisory for trousers (EulerOS-SA-2021-1563)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.5AI score0.00553EPSS
Exploits3References2
OpenVAS
OpenVAS
added 2021/03/05 12:0 a.m.21 views

Huawei EulerOS: Security Advisory for trousers (EulerOS-SA-2021-1425)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.6AI score0.00486EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2020/10/09 12:0 a.m.30 views

EulerOS 2.0 SP9 : trousers (EulerOS-SA-2020-2182)

According to the versions of the trousers package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An issue was discovered in TrouSerS through 0.3.14. If the tcsd daemon is started with root privileges instead of by the tss user, it fails to...

7.8CVSS6.7AI score0.00553EPSS
Exploits3References4
Tenable Nessus
Tenable Nessus
added 2020/09/28 12:0 a.m.39 views

EulerOS 2.0 SP3 : trousers (EulerOS-SA-2020-2122)

According to the versions of the trousers package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An issue was discovered in TrouSerS through 0.3.14. If the tcsd daemon is started with root privileges instead of by the tss user, it fails to...

7.8CVSS7.5AI score0.00486EPSS
Exploits2References3
RedhatCVE
RedhatCVE
added 2020/08/19 10:38 a.m.36 views

CVE-2020-24331

An issue was discovered in TrouSerS through 0.3.14. If the tcsd daemon is started with root privileges, the tss user still has read and write access to the /etc/tcsd.conf file which contains various settings related to this daemon...

7.8CVSS7.5AI score0.00486EPSS
Exploits1References4
NVD
NVD
added 2020/08/13 5:15 p.m.15 views

CVE-2020-24331

An issue was discovered in TrouSerS through 0.3.14. If the tcsd daemon is started with root privileges, the tss user still has read and write access to the /etc/tcsd.conf file which contains various settings related to this daemon...

7.8CVSS7.4AI score0.00486EPSS
Exploits1References5
Prion
Prion
added 2020/08/13 5:15 p.m.25 views

Design/Logic Flaw

An issue was discovered in TrouSerS through 0.3.14. If the tcsd daemon is started with root privileges, the tss user still has read and write access to the /etc/tcsd.conf file which contains various settings related to this daemon...

7.2CVSS7.5AI score0.00486EPSS
Exploits1References5Affected Software2
Cvelist
Cvelist
added 2020/08/13 4:19 p.m.30 views

CVE-2020-24331

An issue was discovered in TrouSerS through 0.3.14. If the tcsd daemon is started with root privileges, the tss user still has read and write access to the /etc/tcsd.conf file which contains various settings related to this daemon...

7.6AI score0.00486EPSS
Exploits1References5
Debian CVE
Debian CVE
added 2020/08/13 4:19 p.m.34 views

CVE-2020-24331

An issue was discovered in TrouSerS through 0.3.14. If the tcsd daemon is started with root privileges, the tss user still has read and write access to the /etc/tcsd.conf file which contains various settings related to this daemon...

7.8CVSS7.7AI score0.00486EPSS
Exploits1
FreeBSD
FreeBSD
added 2020/05/20 12:0 a.m.37 views

security/trousers -- several vulnerabilities

the TrouSerS project reports reports: If the tcsd daemon is started with root privileges, it fails to drop the root gid after it is no longer needed. If the tcsd daemon is started with root privileges, the tss user has read and write access to the /etc/tcsd.conf file. If the tcsd daemon is starte...

7.8CVSS4.4AI score0.00553EPSS
Exploits3References2
Rows per page
Query Builder