Lucene search
K

20 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2014-9645

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The addprobe function in modutils/modprobe.c in BusyBox before 1.23.0 allows local users to bypass intended restrictions on loading kernel modules via a / slash...

5.5CVSS6.2AI score0.00635EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2022/12/09 12:0 a.m.27 views

SUSE: Security Advisory (SUSE-SU-2022:4371-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.6AI score0.01167EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2022/11/29 12:0 a.m.51 views

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : busybox (SUSE-SU-2022:4260-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:4260-1 advisory. - CVE-2014-9645: Fixed loading of unwanted module with / in module names bsc914660. - Enable...

9.8CVSS6.8AI score0.32381EPSS
Exploits2References7
OpenVAS
OpenVAS
added 2022/11/29 12:0 a.m.40 views

SUSE: Security Advisory (SUSE-SU-2022:4260-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7AI score0.32381EPSS
Exploits2References5
OpenVAS
OpenVAS
added 2022/11/29 12:0 a.m.39 views

SUSE: Security Advisory (SUSE-SU-2022:4253-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.2AI score0.32381EPSS
Exploits21References21
OSV
OSV
added 2022/11/28 4:11 p.m.18 views

SUSE-SU-2022:4260-1 Security update for busybox

This update for busybox fixes the following issues: - CVE-2014-9645: Fixed loading of unwanted module with / in module names bsc914660. - Enable switchroot With this change virtme --force-initramfs works as expected. - Enable udhcpc Update to 1.35.0: - awk: fix printf %%, fix read beyond end of...

9.8CVSS7.2AI score0.32381EPSS
Exploits2References5
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.20 views

SUSE: Security Advisory (SUSE-SU-2015:1445-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS6AI score0.00635EPSS
Exploits2References4
Debian
Debian
added 2021/02/15 11:56 a.m.146 views

[SECURITY] [DLA 2559-1] busybox security update

Debian LTS Advisory DLA-2559-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany February 15, 2021 https://wiki.debian.org/LTS Package : busybox Version : 1:1.22.0-19+deb9u1 CVE ID : CVE-2011-5325 CVE-2015-9261 CVE-2016-2147 CVE-2016-2148 CVE-2017-15873 CVE-2017-165...

9.8CVSS7.3AI score0.32381EPSS
Exploits19
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/16 9:50 p.m.34 views

Security Bulletin: IBM Security Access Manager appliances are affected by a vulnerability in Busybox (CVE-2014-9645)

Summary A vulnerability has been identified in Busybox. IBM Security Access Manager appliances use Busybox and are affected by this vulnerabilty. Vulnerability Details CVEID: CVE-2014-9645 DESCRIPTION: Busybox could allow a local attacker to bypass security restrictions, caused by an error when...

5.5CVSS1.7AI score0.00635EPSS
Exploits2Affected Software3
OSV
OSV
added 2017/03/12 6:59 a.m.7 views

CVE-2014-9645

The addprobe function in modutils/modprobe.c in BusyBox before 1.23.0 allows local users to bypass intended restrictions on loading kernel modules via a / slash character in a module name, as demonstrated by an "ifconfig /usbserial up" command or a "mount -t /sndpcm none /" command...

5.5CVSS6.5AI score
Exploits0References15
CVE
CVE
added 2017/03/12 6:5 a.m.252 views

CVE-2014-9645

The CVE-2014-9645 entry concerns BusyBox, where the add_probe function in modutils/modprobe.c allows a local user to bypass module-loading restrictions when a slash (/) is used in a module name (e.g., ifconfig /usbserial up or mount -t /snd_pcm none /). This is a local-privilege-elevation style f...

5.5CVSS6.2AI score0.00635EPSS
Exploits2References10Affected Software1
Debian CVE
Debian CVE
added 2017/03/12 6:5 a.m.27 views

CVE-2014-9645

The addprobe function in modutils/modprobe.c in BusyBox before 1.23.0 allows local users to bypass intended restrictions on loading kernel modules via a / slash character in a module name, as demonstrated by an "ifconfig /usbserial up" command or a "mount -t /sndpcm none /" command...

5.5CVSS6AI score0.00635EPSS
Exploits2
OpenVAS
OpenVAS
added 2015/09/29 12:0 a.m.34 views

Gentoo Security Advisory GLSA 201503-13

Gentoo Linux Local Security Checks GLSA 201503-13 SPDX-FileCopyrightText: 2015 Eero Volotinen Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later ifdescription...

8.8CVSS6.4AI score0.05315EPSS
Exploits3References1
Tenable Nessus
Tenable Nessus
added 2015/09/01 12:0 a.m.37 views

SUSE SLED12 / SLES12 Security Update : busybox (SUSE-SU-2015:1445-1)

-The following issues are fixed by this update: CVE-2014-9645: do not allow / in module names to avoid loading bad modules bnc914660 Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically...

5.5CVSS6.3AI score0.00635EPSS
Exploits2References4
OSV
OSV
added 2015/07/31 3:7 p.m.7 views

SUSE-SU-2015:1445-1 Security update for busybox

-The following issues are fixed by this update: CVE-2014-9645: do not allow / in module names to avoid loading bad modules bnc914660...

5.5CVSS6.8AI score0.00635EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2015/06/19 12:0 a.m.38 views

openSUSE Security Update : busybox (openSUSE-2015-433)

Busybox was updated to fix one security issue. The following vulnerability was fixed : - CVE-2014-9645: fixed a potential modprobe filter bypassing rule by filtering / boo914660 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...

5.5CVSS6.1AI score0.00635EPSS
Exploits2References2
securityvulns
securityvulns
added 2015/02/11 12:0 a.m.79 views

[ MDVSA-2015:031 ] busybox

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:031 http://www.mandriva.com/en/support/security/ Package : busybox Date : February 5, 2015 Affected: Business Server 1.0 Problem Description: Updated busybox packages fix security vulnerability: The modprobe...

2.1CVSS6.9AI score0.00635EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2015/02/06 12:0 a.m.32 views

Mandriva Linux Security Advisory : busybox (MDVSA-2015:031)

Updated busybox packages fix security vulnerability : The modprobe command in busybox before 1.23.0 uses the basename of the module argument as the module to load, allowing arbitrary modules, even when some kernel subsystems try to prevent this CVE-2014-9645. %NASLMINLEVEL 70300 C Tenable Network...

5.5CVSS6.5AI score0.00635EPSS
Exploits2References2
OSV
OSV
added 2015/01/27 9:8 p.m.9 views

MGASA-2015-0041 Updated busybox packages fix CVE-2014-9645

Updated busybox packages fix security vulnerability: The modprobe command in busybox before 1.23.0 uses the basename of the module argument as the module to load, allowing arbitrary modules, even when some kernel subsystems try to prevent this CVE-2014-9645...

5.5CVSS7.1AI score0.00635EPSS
Exploits2References3
Mageia
Mageia
added 2015/01/27 9:8 p.m.36 views

Updated busybox packages fix CVE-2014-9645

Updated busybox packages fix security vulnerability: The modprobe command in busybox before 1.23.0 uses the basename of the module argument as the module to load, allowing arbitrary modules, even when some kernel subsystems try to prevent this CVE-2014-9645...

5.5CVSS7.7AI score0.00635EPSS
Exploits2References2
Rows per page
Query Builder