Lucene search
K

20 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/24 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2014-8583

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - modwsgi before 4.2.4 for Apache, when creating a daemon process group, does not properly handle when group privileges cannot be dropped, which might allow...

6.9CVSS5.5AI score0.00403EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.16 views

Mageia: Security Advisory (MGASA-2014-0513)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.9CVSS6.5AI score0.00403EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.15 views

Huawei EulerOS: Security Advisory for mod_wsgi (EulerOS-SA-2019-2711)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.9CVSS6.5AI score0.00403EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.18 views

Huawei EulerOS: Security Advisory for mod_wsgi (EulerOS-SA-2019-2367)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.9CVSS6.5AI score0.00403EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.30 views

Huawei EulerOS: Security Advisory for mod_wsgi (EulerOS-SA-2019-2633)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.9CVSS6.5AI score0.00403EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/12/23 12:0 a.m.40 views

EulerOS 2.0 SP5 : mod_wsgi (EulerOS-SA-2019-2711)

According to the version of the modwsgi package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - modwsgi before 4.2.4 for Apache, when creating a daemon process group, does not properly handle when group privileges cannot be dropped, which migh...

6.9CVSS5.5AI score0.00403EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/12/10 12:0 a.m.37 views

EulerOS 2.0 SP2 : mod_wsgi (EulerOS-SA-2019-2367)

According to the version of the modwsgi package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - modwsgi before 4.2.4 for Apache, when creating a daemon process group, does not properly handle when group privileges cannot be dropped, which migh...

6.9CVSS5.5AI score0.00403EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2018/04/27 12:0 a.m.58 views

Amazon Linux AMI : mod24_wsgi (ALAS-2018-987)

Failure to handle errors when attempting to drop group privileges modwsgi before 4.2.4 for Apache, when creating a daemon process group, does not properly handle when group privileges cannot be dropped, which might allow attackers to gain privileges via unspecified vectors. CVE-2014-8583 C Tenabl...

6.9CVSS5.3AI score0.00403EPSS
Exploits0References2
Amazon
Amazon
added 2018/04/26 12:0 a.m.30 views

Medium: mod24_wsgi

Issue Overview: Failure to handle errors when attempting to drop group privileges modwsgi before 4.2.4 for Apache, when creating a daemon process group, does not properly handle when group privileges cannot be dropped, which might allow attackers to gain privileges via unspecified vectors...

6.9CVSS7.2AI score0.00403EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2018/04/18 12:0 a.m.31 views

Amazon Linux 2 : mod_wsgi (ALAS-2018-987)

Failure to handle errors when attempting to drop group privileges : modwsgi before 4.2.4 for Apache, when creating a daemon process group, does not properly handle when group privileges cannot be dropped, which might allow attackers to gain privileges via unspecified vectors. CVE-2014-8583 C...

6.9CVSS5.3AI score0.00403EPSS
Exploits0References2
Amazon
Amazon
added 2018/04/05 12:0 a.m.77 views

Medium: mod_wsgi

Issue Overview: Failure to handle errors when attempting to drop group privileges: modwsgi before 4.2.4 for Apache, when creating a daemon process group, does not properly handle when group privileges cannot be dropped, which might allow attackers to gain privileges via unspecified vectors...

6.9CVSS7.1AI score0.00403EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2017/01/03 12:0 a.m.32 views

GLSA-201612-49 : mod_wsgi: Privilege escalation

The remote host is affected by the vulnerability described in GLSA-201612-49 modwsgi: Privilege escalation modwsgi, when creating a daemon process group, does not properly handle dropping group privileges. Impact : Context-dependent attackers could escalate privileges due to the improper handling...

6.9CVSS5.5AI score0.00403EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2015/03/31 12:0 a.m.34 views

Mandriva Linux Security Advisory : apache-mod_wsgi (MDVSA-2015:180)

Updated apache-modwsgi package fixes security vulnerabilities : apache-modwsgi before 4.2.4 contained an off-by-one error in applying a limit to the number of supplementary groups allowed for a daemon process group. The result could be that if more groups than the operating system allowed were...

6.9CVSS5.5AI score0.00403EPSS
Exploits0References3
OSV
OSV
added 2014/12/16 6:59 p.m.7 views

CVE-2014-8583

modwsgi before 4.2.4 for Apache, when creating a daemon process group, does not properly handle when group privileges cannot be dropped, which might allow attackers to gain privileges via unspecified vectors...

7.6AI score
Exploits0References11
CVE
CVE
added 2014/12/16 6:0 p.m.69 views

CVE-2014-8583

CVE-2014-8583 : mod_wsgi (Apache) before 4.2.4 fails to handle when it cannot drop group privileges during daemon process group creation, potentially allowing local privilege escalation via unspecified vectors. Affected software: mod_wsgi before 4.2.4. Impact: attacker could gain privileges with ...

6.9CVSS6.6AI score0.00403EPSS
Exploits0References10Affected Software1
Cvelist
Cvelist
added 2014/12/16 6:0 p.m.20 views

CVE-2014-8583

modwsgi before 4.2.4 for Apache, when creating a daemon process group, does not properly handle when group privileges cannot be dropped, which might allow attackers to gain privileges via unspecified vectors...

6.4AI score0.00403EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2014/12/16 12:0 a.m.18 views

Mandriva Linux Security Advisory : apache-mod_wsgi (MDVSA-2014:253)

Updated apache-modwsgi package fixes security vulnerability : It was discovered that modwsgi incorrectly handled errors when setting up the working directory and group access rights. A malicious application could possibly use this issue to cause a local privilege escalation when using daemon mode...

6.9CVSS5.4AI score0.00403EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2014/12/09 12:0 a.m.24 views

openSUSE Security Update : apache2-mod_wsgi (openSUSE-SU-2014:1590-1)

apache2-modwsgi was updated to fix one security issue. This security issue was fixed : - Failure to handle errors when attempting to drop group privileges CVE-2014-8583. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from...

6.9CVSS5.3AI score0.00403EPSS
Exploits0References3
Mageia
Mageia
added 2014/12/05 4:59 p.m.24 views

Updated apache-mod_wsgi package fixes security vulnerability

It was discovered that modwsgi incorrectly handled errors when setting up the working directory and group access rights. A malicious application could possibly use this issue to cause a local privilege escalation when using daemon mode CVE-2014-8583...

6.9CVSS6.6AI score0.00403EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2014/11/04 12:0 a.m.20 views

CVE-2014-8583

modwsgi before 4.2.4 for Apache, when creating a daemon process group, does not properly handle when group privileges cannot be dropped, which might allow attackers to gain privileges via unspecified vectors...

6.9CVSS5.9AI score0.00403EPSS
Exploits0References4
Rows per page
Query Builder