Lucene search
K

11 matches found

OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.28 views

Mageia: Security Advisory (MGASA-2015-0186)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS3.8AI score0.03242EPSS
Exploits0References9
IBM Security Bulletins
IBM Security Bulletins
added 2018/08/09 4:20 a.m.39 views

Security Bulletin: Current Release of IBM® SDK for Node.js™ is affected by CVE-2015-0278

Summary Privilege escalation vulnerability in libuv, caused by the failure to invoke setgroups prior to calling setuid and setgid. Vulnerability Details CVE-ID: CVE-2015-0278 Description: libuv could allow a local attacker to gain elevated privileges on the system, caused by the failure to invoke...

10CVSS1.1AI score0.03242EPSS
Exploits0Affected Software1
OpenVAS
OpenVAS
added 2015/07/07 12:0 a.m.30 views

Fedora Update for compat-libuv010 FEDORA-2015-2563

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS3.8AI score0.03242EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2015/05/18 3:59 p.m.30 views

CVE-2015-0278

libuv before 0.10.34 does not properly drop group privileges, which allows context-dependent attackers to gain privileges via unspecified vectors...

10CVSS7.1AI score0.03242EPSS
Exploits0References2
CVE
CVE
added 2015/05/18 3:0 p.m.81 views

CVE-2015-0278

CVE-2015-0278 affects libuv where setgroups is not invoked before setuid/setgid, enabling context-dependent privilege escalation. The vulnerability is present in libuv up to version prior to 0.10.34 and is also embedded in Node.js releases (e.g., IBM SDK for Node.js). Remediation per connected do...

10CVSS3.9AI score0.03242EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2015/05/18 3:0 p.m.49 views

CVE-2015-0278

libuv before 0.10.34 does not properly drop group privileges, which allows context-dependent attackers to gain privileges via unspecified vectors...

3.8AI score0.03242EPSS
Exploits0References7
securityvulns
securityvulns
added 2015/05/11 12:0 a.m.119 views

[ MDVSA-2015:228 ] nodejs

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:228 http://www.mandriva.com/en/support/security/ Package : nodejs Date : May 6, 2015 Affected: Business Server 2.0 Problem Description: Updated nodejs package fixes security vulnerability: It was found that...

10CVSS3.8AI score0.03242EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2015/05/07 12:0 a.m.43 views

Mandriva Linux Security Advisory : nodejs (MDVSA-2015:228)

Updated nodejs package fixes security vulnerability : It was found that libuv does not call setgoups before calling setuid/setgid. This may potentially allow an attacker to gain elevated privileges CVE-2015-0278. The libuv library is bundled with nodejs, and a fixed version of libuv is included...

10CVSS7.8AI score0.03242EPSS
Exploits0References2
OSV
OSV
added 2015/05/05 1:36 p.m.3 views

MGASA-2015-0186 Updated nodejs packages fix security vulnerabilities

Updated nodejs package fixes security vulnerability: It was found that libuv does not call setgoups before calling setuid/setgid. This may potentially allow an attacker to gain elevated privileges CVE-2015-0278. The libuv library is bundled with nodejs, and a fixed version of libuv is included wi...

10CVSS6.9AI score0.03242EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2015/03/25 12:0 a.m.36 views

FreeBSD : libuv -- incorrect revocation order while relinquishing privileges (996bce94-d23d-11e4-9463-9cb654ea3e1c)

Nodejs releases reports : CVE-2015-0278 This may potentially allow an attacker to gain elevated privileges. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the FreeBSD VuXML database : Copyright 2003-2018 Jacques...

10CVSS8AI score0.03242EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2015/03/01 12:0 a.m.42 views

Fedora Update for v8 FEDORA-2015-2313

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS3.8AI score0.03242EPSS
Exploits0References2
Rows per page
Query Builder