Lucene search
K

10 matches found

OpenVAS
OpenVAS
added 2024/05/11 12:0 a.m.16 views

openSUSE Security Advisory (openSUSE-SU-2024:0119-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.9AI score0.63076EPSS
Exploits3References6
OPENSUSE Linux
OPENSUSE Linux
added 2024/05/10 12:0 a.m.5 views

Security update for tinyproxy (important)

openSUSE Security Update: Security update for tinyproxy Announcement ID: openSUSE-SU-2024:0119-1 Rating: important References: 1200028 1203553 1223743 1223746 Cross-References: CVE-2012-3505 CVE-2017-11747 CVE-2022-40468 CVE-2023-40533 CVE-2023-49606 CVSS scores: CVE-2017-11747 NVD : 5.5...

7.5CVSS6.6AI score0.63076EPSS
Exploits3References4
Tenable Nessus
Tenable Nessus
added 2023/10/16 12:0 a.m.22 views

Ubuntu 16.04 ESM / 18.04 ESM : Tinyproxy vulnerability (USN-4808-1)

The remote Ubuntu 16.04 ESM / 18.04 ESM host has packages installed that are affected by a vulnerability as referenced in the USN-4808-1 advisory. It was discovered that Tinyproxy created its pid file with insecure permissions. An attacker could use the vulnerability to cause arbitrary processes ...

5.5CVSS5.9AI score0.00292EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/02/15 4:42 a.m.5 views

SUSE CVE-2017-11747

main.c in Tinyproxy 1.8.4 and earlier creates a /run/tinyproxy/tinyproxy.pid file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-root account for tinyproxy.pid modification before a root script executes a...

5.5CVSS6.7AI score0.00292EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2020/04/02 12:0 a.m.29 views

Debian DLA-2163-1 : tinyproxy security update

A minor security issue and a severe packaging bug have been fixed in tinyproxy, a lightweight http proxy daemon. CVE-2017-11747 main.c in Tinyproxy created a /var/run/tinyproxy/tinyproxy.pid file after dropping privileges to a non-root account, which might have allowed local users to kill arbitra...

5.5CVSS5.8AI score0.00292EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2020/04/01 12:0 a.m.58 views

Debian: Security Advisory (DLA-2163-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS5.5AI score0.00292EPSS
Exploits0References3
Debian
Debian
added 2020/03/31 1:17 p.m.39 views

[SECURITY] [DLA 2163-1] tinyproxy security update

Package : tinyproxy Version : 1.8.3-3+deb8u1 CVE ID : CVE-2017-11747 Debian Bug : 870307 948283 A minor security issue and a severe packaging bug have been fixed in tinyproxy, a lightweight http proxy daemon. CVE-2017-11747 main.c in Tinyproxy created a /var/run/tinyproxy/tinyproxy.pid file after...

5.5CVSS5.8AI score0.00292EPSS
Exploits0
NVD
NVD
added 2017/07/30 4:29 p.m.22 views

CVE-2017-11747

main.c in Tinyproxy 1.8.4 and earlier creates a /run/tinyproxy/tinyproxy.pid file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-root account for tinyproxy.pid modification before a root script executes a...

5.5CVSS5.8AI score0.00292EPSS
Exploits0References2
OSV
OSV
added 2017/07/30 4:29 p.m.20 views

CVE-2017-11747

main.c in Tinyproxy 1.8.4 and earlier creates a /run/tinyproxy/tinyproxy.pid file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-root account for tinyproxy.pid modification before a root script executes a...

5.5CVSS6.6AI score
Exploits0References2
CVE
CVE
added 2017/07/30 4:0 p.m.92 views

CVE-2017-11747

CVE-2017-11747 affects Tinyproxy (1.8.4 and older): main.c creates /run/tinyproxy/tinyproxy.pid after dropping privileges to a non-root account, allowing local users to modify the PID file and potentially kill the process via a root script that executes kill cat /run/tinyproxy/tinyproxy.pid. Seve...

5.5CVSS5.6AI score0.00292EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder