10 matches found
EUVD-2024-34434
Malicious code in bioql PyPI...
CVE-2024-28955
Affected devices create coredump files when crashed, storing them with world-readable permission. Any local user of the device can examine the coredump files, and research the memory contents. As for the details of affected product names, model numbers, and versions, refer to the information...
CVE-2024-28955
Affected devices create coredump files when crashed, storing them with world-readable permission. Any local user of the device can examine the coredump files, and research the memory contents. As for the details of affected product names, model numbers, and versions, refer to the information...
CVE-2024-28955
CVE-2024-28955 affects Sharp/Toshiba TEC MFPs. The issue arises from incorrect permission assignment, causing crash coredump files to be world-readable; any local user can inspect memory contents. Public details cover affected models/versions through vendor notices and related advisories. Remedia...
CVE-2024-28955
Affected devices create coredump files when crashed, storing them with world-readable permission. Any local user of the device can examine the coredump files, and research the memory contents. As for the details of affected product names, model numbers, and versions, refer to the information...
CVE-2024-28955
Affected devices create coredump files when crashed, storing them with world-readable permission. Any local user of the device can examine the coredump files, and research the memory contents. As for the details of affected product names, model numbers, and versions, refer to the information...
PT-2024-22642 · Toshiba · Sharp/Toshiba Tec Mfps
Name of the Vulnerable Software and Affected Versions: Sharp/Toshiba Tec MFPs affected versions not specified Description: The issue allows any local user of the device to examine coredump files, which are stored with world-readable permission when the device crashes. This enables the user to...
abrt: abrt-hook-ccpp writes core dumps to existing files owned by others
It was discovered that the kernel-invoked coredump processor provided by ABRT wrote core dumps to files owned by other system users. This could result in information disclosure if an application crashed while its current directory was a directory writable to by other users such as /tmp...
Linux multiple security vulnerabilities
DoS with minix filesystem, integer overflow in hrtimer subsystem, buffer overflow on ISDN IOCTL handling, invalid coredump files handling...
Linux cored ump files privilege escalation
Application can create coredump file in any directory by setting rlimits...