Lucene search
K

93 matches found

Fedora
Fedora
added 2022/07/30 2:0 a.m.16 views

[SECURITY] Fedora 36 Update: golang-github-mvo5-uboot-0.4-11.fc36

Small Go package/app to read/write uboot env files that contain crc32 + 1 byte padding. Unlike fwset,printenv it does not needs a /etc/fwenv.config conf ig file...

7.2AI score
Exploits0
Fedora
Fedora
added 2022/07/17 1:15 a.m.21 views

[SECURITY] Fedora 35 Update: golang-github-mvo5-uboot-0.4-10.fc35

Small Go package/app to read/write uboot env files that contain crc32 + 1 byte padding. Unlike fwset,printenv it does not needs a /etc/fwenv.config conf ig file...

9.3CVSS8.8AI score0.05994EPSS
Exploits4
NVD
NVD
added 2021/11/17 6:15 a.m.28 views

CVE-2021-43337

SchedMD Slurm 21.08. before 21.08.4 has Incorrect Access Control. On sites using the new AccountingStoreFlags=jobscript and/or jobenv options, the access control rules in SlurmDBD may permit users to request job scripts and environment files to which they should not have access...

6.5CVSS0.01199EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2021/11/17 6:15 a.m.43 views

CVE-2021-43337

SchedMD Slurm 21.08. before 21.08.4 has Incorrect Access Control. On sites using the new AccountingStoreFlags=jobscript and/or jobenv options, the access control rules in SlurmDBD may permit users to request job scripts and environment files to which they should not have access...

6.5CVSS6.6AI score0.01199EPSS
Exploits0References5
OSV
OSV
added 2021/11/17 6:15 a.m.1 views

UBUNTU-CVE-2021-43337

SchedMD Slurm 21.08. before 21.08.4 has Incorrect Access Control. On sites using the new AccountingStoreFlags=jobscript and/or jobenv options, the access control rules in SlurmDBD may permit users to request job scripts and environment files to which they should not have access...

6.5CVSS5.8AI score0.01199EPSS
Exploits0References6
Debian CVE
Debian CVE
added 2021/11/17 5:22 a.m.20 views

CVE-2021-43337

SchedMD Slurm 21.08. before 21.08.4 has Incorrect Access Control. On sites using the new AccountingStoreFlags=jobscript and/or jobenv options, the access control rules in SlurmDBD may permit users to request job scripts and environment files to which they should not have access...

6.5CVSS6.4AI score0.01199EPSS
Exploits0
Cvelist
Cvelist
added 2021/11/17 5:22 a.m.27 views

CVE-2021-43337

SchedMD Slurm 21.08. before 21.08.4 has Incorrect Access Control. On sites using the new AccountingStoreFlags=jobscript and/or jobenv options, the access control rules in SlurmDBD may permit users to request job scripts and environment files to which they should not have access...

6.6AI score0.01199EPSS
Exploits0References6
OSV
OSV
added 2020/11/11 4:15 a.m.3 views

CVE-2020-16127

An Ubuntu-specific modification to AccountsService in versions before 0.6.55-0ubuntu13.2, among other earlier versions, would perform unbounded read operations on user-controlled /.pamenvironment files, allowing an infinite loop if /dev/zero is symlinked to this location...

5.5CVSS6.5AI score0.00409EPSS
Exploits2References1
OSV
OSV
added 2017/07/17 1:18 p.m.3 views

CVE-2017-1000037

RVM automatically loads environment variables from files in $PWD resulting in command execution RVM vulnerable to command injection when automatically loading environment variables from files in $PWD RVM automatically executes hooks located in $PWD resulting in code execution RVM automatically...

9.8CVSS6.2AI score0.06176EPSS
Exploits1References1
Broadcom
Broadcom
added 2016/05/10 12:0 a.m.7 views

BSA-2016-015

Security Advisory ID : BSA-2016-015 Component : OpenSSH Revision : 3.0: Final The dosetupenv function in session.c in sshd in OpenSSH through 7.2p2, when the UseLogin feature is enabled and PAM is configured to read .pamenvironment files in user home directories, allows local users to gain...

7.8CVSS7.1AI score0.00627EPSS
Exploits0
OSV
OSV
added 2016/05/09 5:4 p.m.3 views

USN-2966-1 openssh vulnerabilities

Shayan Sadigh discovered that OpenSSH incorrectly handled environment files when the UseLogin feature is enabled. A local attacker could use this issue to gain privileges. CVE-2015-8325 Ben Hawkes discovered that OpenSSH incorrectly handled certain network traffic. A remote attacker could possibl...

9.8CVSS6.8AI score0.37016EPSS
Exploits13References5
Vulnrichment
Vulnrichment
added 2016/05/01 12:0 a.m.3 views

CVE-2015-8325

The dosetupenv function in session.c in sshd in OpenSSH through 7.2p2, when the UseLogin feature is enabled and PAM is configured to read .pamenvironment files in user home directories, allows local users to gain privileges by triggering a crafted environment for the /bin/login program, as...

7.1AI score0.00627EPSS
Exploits0References12
OSV
OSV
added 2016/04/30 12:0 a.m.3 views

UBUNTU-CVE-2015-8325

The dosetupenv function in session.c in sshd in OpenSSH through 7.2p2, when the UseLogin feature is enabled and PAM is configured to read .pamenvironment files in user home directories, allows local users to gain privileges by triggering a crafted environment for the /bin/login program, as...

7.8CVSS7.3AI score0.00627EPSS
Exploits0References3
Rows per page
Query Builder