Lucene search
K

5 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2023/09/07 6:42 a.m.60 views

Security Bulletin: Multiple vulnerabilities in scala-compiler-2.11.8.jar affect IBM Application Performance Management products

Summary There are multiple vulnerabilities in scala-compiler-2.11.8.jar used by IBM Application Performance Management. IBM Application Performance Management has addressed the applicable CVEs. Vulnerability Details CVEID:CVE-2017-15288 DESCRIPTION: Scala could allow a local authenticated attacke...

7.8CVSS7.7AI score0.00375EPSS
Exploits1Affected Software1
Tenable Nessus
Tenable Nessus
added 2018/12/17 12:0 a.m.27 views

GLSA-201812-08 : Scala: Privilege escalation

The remote host is affected by the vulnerability described in GLSA-201812-08 Scala: Privilege escalation It was discovered that Scalas compilation daemon does not properly manage permissions for private files. Impact : A local attacker could escalate privileges. Workaround : There is no known...

7.8CVSS6.9AI score0.00375EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2017/11/23 3:19 p.m.24 views

CVE-2017-15288

The compilation daemon in Scala before 2.10.7, 2.11.x before 2.11.12, and 2.12.x before 2.12.4 uses weak permissions for private files in /tmp/scala-devel/$USER:shared/scalac-compile-server-port, which allows local users to write to arbitrary class files and consequently gain privileges. Mitigati...

7.8CVSS3.2AI score0.00375EPSS
Exploits1References1
OSV
OSV
added 2017/11/15 4:29 p.m.1 views

UBUNTU-CVE-2017-15288

The compilation daemon in Scala before 2.10.7, 2.11.x before 2.11.12, and 2.12.x before 2.12.4 uses weak permissions for private files in /tmp/scala-devel/$USER:shared/scalac-compile-server-port, which allows local users to write to arbitrary class files and consequently gain privileges...

7.8CVSS7AI score0.00375EPSS
Exploits1References6
CVE
CVE
added 2017/11/15 4:0 p.m.89 views

CVE-2017-15288

CVE-2017-15288 affects the Scala compilation daemon. The root cause is weak permissions for private files in /tmp/scala-devel/${USER:shared}/scalac-compile-server-port, allowing a local user to overwrite arbitrary class files and escalate privileges. Affected branches: Scala pre-2.10.7, 2.11.x be...

7.8CVSS7.5AI score0.00375EPSS
Exploits1References19Affected Software1
Rows per page
Query Builder