CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2019/01/15 3:29 p.m.•0 views

UBUNTU-CVE-2019-3811

5.2CVSS6AI score0.00696EPSS

Exploits0References3

OSV•added 2019/01/15 3:29 p.m.•3 views

DEBIAN-CVE-2019-3811

5.2CVSS6.7AI score0.00696EPSS

Exploits0References1

Veracode•added 2019/01/15 9:19 a.m.•31 views

Denial Of Service (DoS)

kernel-rt is vulnerable to denial of service DoS attacks. The vulnerability exists as the pivotroot implementation in fs/namespace.c in the Linux kernel through 3.17 does not properly interact with certain locations of a chroot directory, which allows local users to cause a denial of service...

5.5CVSS5.5AI score0.00673EPSS

Exploits1References52Affected Software1

RedhatCVE•added 2019/01/11 6:26 p.m.•14 views

CVE-2019-3811

A vulnerability was found in sssd where, if a user was configured with no home directory set, sssd would return '/' the root directory instead of '' the empty string / no home directory. This could impact services that restrict the user's filesystem access to within their home directory through...

5.2CVSS1AI score0.00696EPSS

Tenable Nessus•added 2019/01/03 12:0 a.m.•32 views

Fedora 29 : 32:bind (2018-a54e46032f)

Update to bind-9.11.4-P2 - Add /dev/urandom to chroot 1631515 - Fix multilib conflicts of devel package - Add support for OpenSSL provided random data Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has...

6.5CVSS6.8AI score0.05285EPSS

Tenable Nessus•added 2019/01/03 12:0 a.m.•29 views

Fedora 28 : 32:bind (2018-f22b937f52)

6.5CVSS6.8AI score0.05285EPSS

Fedora•added 2018/09/06 2:32 a.m.•32 views

[SECURITY] Fedora 27 Update: obs-build-20180816-291.1.1.fc27

This package provides a script for building packages in a chroot environmen t. It is commonly used with the Open Build Service as the engine for building packages for a wide variety of distributions...

9.9CVSS2.3AI score0.01744EPSS

Fedora•added 2018/08/26 5:41 p.m.•37 views

[SECURITY] Fedora 28 Update: obs-build-20180816-291.1.1.fc28

9.9CVSS2.3AI score0.01744EPSS

ALT Linux•added 2018/08/20 12:0 a.m.•65 views

Security fix for the ALT Linux 8 package mariadb version 10.1.35-alt1

Aug. 20, 2018 Alexey Shabalin 10.1.35-alt1 - 10.1.35 - Fixes for the following security vulnerabilities: + CVE-2018-3064 + CVE-2018-3063 + CVE-2018-3058 + CVE-2018-3066 - change mode of plugin dir in chroot ALT 33259...

5.5CVSS6.3AI score0.03213EPSS

Prion•added 2018/02/09 10:29 p.m.•14 views

Security feature bypass

The crash reporting feature in Abrt allows local users to gain privileges by leveraging an execve by root after a chroot into a user-specified directory in a namedspaced environment...

6.9CVSS6.9AI score0.03081EPSS

Exploits13References10Affected Software1

NVD•added 2018/02/09 10:29 p.m.•19 views

CVE-2015-1862

The crash reporting feature in Abrt allows local users to gain privileges by leveraging an execve by root after a chroot into a user-specified directory in a namedspaced environment...

7CVSS6.8AI score0.03081EPSS

Exploits13References10

Packet Storm•added 2017/11/07 12:0 a.m.•91 views

Linux Kernel 4.1.3 (Ubuntu 17.10) waitid() SMEP/SMAP Privilege Escalation

// Proof of concept exploit for waitid bug introduced in Linux Kernel 4.13 // By Chris Salls twitter.com/chrissalls // This exploit can be used to break out out of sandboxes such as that in google chrome // In this proof of concept we install the seccomp filter from chrome as well as a chroot, //...

7.9AI score0.03714EPSS

Exploits10

Exploit DB•added 2017/11/06 12:0 a.m.•206 views

Linux Kernel 4.13 (Ubuntu 17.10) - 'waitid()' SMEP/SMAP/Chrome Sandbox Privilege Escalation

7.4AI score

exploitpack•added 2017/11/06 12:0 a.m.•47 views

Linux Kernel 4.13 (Ubuntu 17.10) - waitid() SMEPSMAPChrome Sandbox Privilege Escalation

Linux Kernel 4.13 Ubuntu 17.10 - waitid SMEPSMAPChrome Sandbox Privilege Escalation // Proof of concept exploit for waitid bug introduced in Linux Kernel 4.13 // By Chris Salls twitter.com/chrissalls // This exploit can be used to break out out of sandboxes such as that in google chrome // In thi...

1AI score

Exploit DB•added 2017/10/02 12:0 a.m.•61 views

UCOPIA Wireless Appliance < 5.1.8 - Local Privilege Escalation

CVE-2017-11322 UCOPIA Wireless Appliance 5.1.8 Privileges Escalation Asset description UCOPIA solutions bring together a combination of software, appliance and cloud services serving small to large customers. More than 12,000 UCOPIA solutions are deployed and maintained by UCOPIA expert partners...

8.2CVSS7.3AI score0.04719EPSS

exploitpack•added 2017/10/02 12:0 a.m.•47 views

UCOPIA Wireless Appliance 5.1.8 - Local Privilege Escalation

UCOPIA Wireless Appliance 5.1.8 - Local Privilege Escalation CVE-2017-11322 UCOPIA Wireless Appliance 5.1.8 Privileges Escalation Asset description UCOPIA solutions bring together a combination of software, appliance and cloud services serving small to large customers. More than 12,000 UCOPIA...

7.2CVSS0.7AI score0.04719EPSS

Fedora•added 2017/09/30 7:36 a.m.•36 views

[SECURITY] Fedora 27 Update: pure-ftpd-1.0.46-2.fc27

Pure-FTPd is a fast, production-quality, standard-comformant FTP server, based upon Troll-FTPd. Unlike other popular FTP servers, it has no known security flaw, it is really trivial to set up and it is especially designed for modern Linux and FreeBSD kernels setfsuid, sendfile, capabilities...

9.8CVSS0.5AI score0.01517EPSS

0day.today•added 2017/09/30 12:0 a.m.•71 views

UCOPIA Wireless Appliance Privilege Escalation Vulnerability

Exploit for linux platform in category local exploits CVE-2017-11322 UCOPIA Wireless Appliance 5.1.8 Privileges Escalation Asset description UCOPIA solutions bring together a combination of software, appliance and cloud services serving small to large customers. More than 12,000 UCOPIA solutions...

7.2CVSS7.3AI score0.04719EPSS

Packet Storm•added 2017/09/29 12:0 a.m.•69 views

UCOPIA Wireless Appliance Privilege Escalation

0.9AI score0.04719EPSS