Lucene search
K

24 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2015-4625

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Integer overflow in the authenticationagentnewcookie function in PolicyKit aka polkit before 0.113 allows local users to gain privileges by creating a large...

4.6CVSS6.2AI score0.00405EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.26 views

RHEL 7 : polkit (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - polkit: potential information disclosure vulnerability due to cookie counter wrapping CVE-2015-4625 -...

7.8CVSS8AI score0.00415EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.22 views

SUSE: Security Advisory (SUSE-SU-2015:1838-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.6CVSS6AI score0.00415EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2020/04/16 12:0 a.m.53 views

EulerOS Virtualization 3.0.2.2 : polkit (EulerOS-SA-2020-1463)

According to the versions of the polkit package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - The polkitbackendactionpoolinit function in polkitbackend/polkitbackendactionpool.c in PolicyKit aka polkit before 0.113 might all...

9CVSS7.1AI score0.11483EPSS
Exploits1References6
OpenVAS
OpenVAS
added 2020/04/16 12:0 a.m.65 views

Huawei EulerOS: Security Advisory for polkit (EulerOS-SA-2020-1424)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.6CVSS5.2AI score0.00415EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2020/04/16 12:0 a.m.28 views

Huawei EulerOS: Security Advisory for polkit (EulerOS-SA-2020-1463)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9CVSS7.5AI score0.11483EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.28 views

Huawei EulerOS: Security Advisory for polkit (EulerOS-SA-2019-2404)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.7CVSS5.5AI score0.01196EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.24 views

Huawei EulerOS: Security Advisory for polkit (EulerOS-SA-2019-2223)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9CVSS7.5AI score0.11483EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2018/07/17 12:0 a.m.30 views

Ubuntu: Security Advisory (USN-3717-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.7CVSS5.5AI score0.01196EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2018/07/17 12:0 a.m.43 views

Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS : PolicyKit vulnerabilities (USN-3717-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3717-1 advisory. Tavis Ormandy discovered that PolicyKit incorrectly handled certain invalid object paths. A local attacker could possibly use thi...

4.7CVSS5.8AI score0.01196EPSS
Exploits0References5
Ubuntu
Ubuntu
added 2018/07/16 3:17 p.m.73 views

USN-3717-1: PolicyKit vulnerabilities

Tavis Ormandy discovered that PolicyKit incorrectly handled certain invalid object paths. A local attacker could possibly use this issue to cause PolicyKit to crash, resulting in a denial of service. This issue only affected Ubuntu 14.04 LTS. CVE-2015-3218 It was discovered that PolicyKit...

4.7CVSS5.7AI score0.01196EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2015/11/20 12:0 a.m.28 views

openSUSE Security Update : polkit (openSUSE-2015-711)

polkit was updated to the 0.113 release, fixing security issues and bugs. Security issues fixed : - Fixes CVE-2015-4625, a local privilege escalation due to predictable authentication session cookie values. Thanks to Tavis Ormandy, Google Project Zero for reporting this issue. For the future,...

4.6CVSS6.3AI score0.00415EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2015/10/29 12:0 a.m.28 views

SUSE SLED12 / SLES12 Security Update : polkit (SUSE-SU-2015:1838-1)

polkit was updated to the 0.113 release, fixing security issues and bugs. Security issues fixed : - Fixes CVE-2015-4625, a local privilege escalation due to predictable authentication session cookie values. Thanks to Tavis Ormandy, Google Project Zero for reporting this issue. For the future,...

4.6CVSS6.3AI score0.00415EPSS
Exploits0References15
OSV
OSV
added 2015/10/26 7:59 p.m.5 views

CVE-2015-4625

Integer overflow in the authenticationagentnewcookie function in PolicyKit aka polkit before 0.113 allows local users to gain privileges by creating a large number of connections, which triggers the issuance of a duplicate cookie value...

6.4AI score
Exploits0References12
Cvelist
Cvelist
added 2015/10/26 7:0 p.m.32 views

CVE-2015-4625

Integer overflow in the authenticationagentnewcookie function in PolicyKit aka polkit before 0.113 allows local users to gain privileges by creating a large number of connections, which triggers the issuance of a duplicate cookie value...

4.7AI score0.00405EPSS
Exploits0References12
CVE
CVE
added 2015/10/26 7:0 p.m.87 views

CVE-2015-4625

PolicyKit (polkit) before 0.113 is affected by an integer overflow in authentication_agent_new_cookie, which local users can exploit to gain privileges by creating many connections and triggering a duplicate cookie. This CVE (CVE-2015-4625) affects polkit across multiple distributions; remediatio...

4.6CVSS4.7AI score0.00405EPSS
Exploits0References12Affected Software2
Debian CVE
Debian CVE
added 2015/10/26 7:0 p.m.28 views

CVE-2015-4625

Integer overflow in the authenticationagentnewcookie function in PolicyKit aka polkit before 0.113 allows local users to gain privileges by creating a large number of connections, which triggers the issuance of a duplicate cookie value...

4.6CVSS6.2AI score0.00405EPSS
Exploits0
OSV
OSV
added 2015/10/22 7:44 a.m.8 views

SUSE-SU-2015:1838-1 Security update for polkit

polkit was updated to the 0.113 release, fixing security issues and bugs. Security issues fixed: Fixes CVE-2015-4625, a local privilege escalation due to predictable authentication session cookie values. Thanks to Tavis Ormandy, Google Project Zero for reporting this issue. For the future,...

4.6CVSS7.2AI score0.00415EPSS
Exploits0References11
OpenVAS
OpenVAS
added 2015/10/16 12:0 a.m.34 views

openSUSE: Security Advisory for polkit (openSUSE-SU-2015:1734-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.6CVSS6.1AI score0.00415EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2015/10/15 12:0 a.m.31 views

openSUSE Security Update : polkit (openSUSE-2015-655)

Polkit was updated to 0.113 to fix four security issues. The following vulnerabilities were fixed : - CVE-2015-4625: a local privilege escalation due to predictable authentication session cookie values. boo935119 - CVE-2015-3256: various memory corruption vulnerabilities in use of the JavaScript...

4.6CVSS6.3AI score0.00415EPSS
Exploits0References8
Rows per page
Query Builder