Lucene search
K

5 matches found

Veracode
Veracode
•added 2019/05/02 4:58 a.m.•19 views

Elevation Of Privileges By An Untrusted Search Path Vulnerability

Luci is a web-based high availability administration application. A flaw was found in the way the luci service was initialized. If a system administrator started the luci service from a directory that was writable to by a local user, that user could use this flaw to execute arbitrary code as the...

6.2CVSS6.7AI score0.00378EPSS
Exploits0References13Affected Software1
Tenable Nessus
Tenable Nessus
•added 2014/11/12 12:0 a.m.•31 views

CentOS 6 : luci (CESA-2013:1603)

Updated luci packages that fix two security issues, several bugs, and add two enhancements are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which giv...

6.2CVSS5.7AI score0.00378EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
•added 2013/12/04 12:0 a.m.•30 views

Scientific Linux Security Update : luci on SL6.x i386/x86_64 (20131121)

A flaw was found in the way the luci service was initialized. If a system administrator started the luci service from a directory that was writable to by a local user, that user could use this flaw to execute arbitrary code as the root or luci user. CVE-2013-4482 A flaw was found in the way luci...

6.2CVSS5.7AI score0.00378EPSS
Exploits0References3
CVE
CVE
•added 2013/11/23 11:0 a.m.•93 views

CVE-2013-4482

CVE-2013-4482 affects Luci 0.26.0. The vulnerability is an untrusted search path issue: when Luci is started via its initscript, a local user can exploit a Trojan horse .egg-info file in the current working directory or its parent directories to gain privileges. The issue is confirmed in multiple...

6.2CVSS6.5AI score0.00378EPSS
Exploits0References2Affected Software2
Tenable Nessus
Tenable Nessus
•added 2013/11/21 12:0 a.m.•29 views

RHEL 6 : luci (RHSA-2013:1603)

The remote Redhat Enterprise Linux 6 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2013:1603 advisory. Luci is a web-based high availability administration application. A flaw was found in the way the luci service was initialized. If a system...

6.2CVSS5.9AI score0.00378EPSS
Exploits0References16
Rows per page
Query Builder