Lucene search
K

16 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2017-9525

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the cron package through 3.0pl1-128 on Debian, and through 3.0pl1-128ubuntu2 on Ubuntu, the postinst maintainer script allows for group-crontab-to-root...

6.9CVSS6.3AI score0.00551EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2022/08/26 12:0 a.m.19 views

Ubuntu: Security Advisory (USN-5259-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.9CVSS6AI score0.00551EPSS
Exploits1References2
Cloud Foundry
Cloud Foundry
added 2022/07/29 12:0 a.m.22 views

USN-5259-2: Cron vulnerabilities | Cloud Foundry

Severity Low Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 18.04 Description USN-5259-1 fixed several vulnerabilities in Cron. This update provides the corresponding update for Ubuntu 18.04 LTS. Original advisory details: It was discovered that the postinst maintainer script in Cron...

6.9CVSS6.5AI score0.00551EPSS
Exploits1Affected Software3
Cloud Foundry
Cloud Foundry
added 2022/07/29 12:0 a.m.28 views

USN-5259-3: Cron regression | Cloud Foundry

Severity Low Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 16.04 Canonical Ubuntu 18.04 Description USN-5259-1 and USN-5259-2 fixed vulnerabilities in Cron. Unfortunately that update was incomplete and could introduce a regression. This update fixes the problem. We apologize for the...

6.9CVSS6.6AI score0.00551EPSS
Exploits1Affected Software3
Tenable Nessus
Tenable Nessus
added 2022/05/11 12:0 a.m.25 views

Ubuntu 16.04 ESM / 18.04 LTS : Cron regression (USN-5259-3)

The remote Ubuntu 16.04 ESM / 18.04 LTS host has a package installed that is affected by a vulnerability as referenced in the USN-5259-3 advisory. USN-5259-1 and USN-5259-2 fixed vulnerabilities in Cron. Unfortunately that update was incomplete and could introduce a regression. This update fixes...

6.9CVSS6.5AI score0.00551EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/05/11 12:0 a.m.22 views

Ubuntu: Security Advisory (USN-5259-3)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.9CVSS5.8AI score0.00551EPSS
Exploits1References4
Ubuntu
Ubuntu
added 2022/05/06 8:42 a.m.131 views

USN-5259-2: Cron vulnerabilities

USN-5259-1 fixed several vulnerabilities in Cron. This update provides the corresponding update for Ubuntu 18.04 LTS. Original advisory details: It was discovered that the postinst maintainer script in Cron unsafely handled file permissions during package install or update operations. An attacker...

6.9CVSS6.1AI score0.00551EPSS
Exploits1
OpenVAS
OpenVAS
added 2021/10/31 12:0 a.m.25 views

Debian: Security Advisory (DLA-2801-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.9CVSS5.6AI score0.00551EPSS
Exploits1References4
Debian
Debian
added 2021/10/30 6:16 p.m.55 views

[SECURITY] [DLA 2801-1] cron security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2801-1 [email protected] https://www.debian.org/lts/security/ Adrian Bunk October 30, 2021 https://wiki.debian.org/LTS -...

6.9CVSS6.3AI score0.00551EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2021/10/30 12:0 a.m.33 views

Debian DLA-2801-1 : cron - LTS security update

The remote Debian 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the dla-2801 advisory. - In the cron package through 3.0pl1-128 on Debian, and through 3.0pl1-128ubuntu2 on Ubuntu, the postinst maintainer script allows for group-crontab-to-root...

6.9CVSS5.6AI score0.00551EPSS
Exploits1References12
Debian
Debian
added 2019/03/21 8:21 p.m.128 views

[SECURITY] [DLA 1723-1] cron security update

Package : cron Version : 3.0pl1-127+deb8u2 CVE ID : CVE-2017-9525 CVE-2019-9704 CVE-2019-9705 CVE-2019-9706 Debian Bug : 809167 Various security problems have been discovered in Debians CRON scheduler. CVE-2017-9525 Fix group crontab to root escalation via the Debian packages postinst script as...

6.9CVSS6.3AI score0.00551EPSS
Exploits1
OpenVAS
OpenVAS
added 2019/03/21 12:0 a.m.22 views

Debian: Security Advisory (DLA-1723-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.9CVSS5.7AI score0.00551EPSS
Exploits1References4
NVD
NVD
added 2017/06/09 4:29 p.m.20 views

CVE-2017-9525

In the cron package through 3.0pl1-128 on Debian, and through 3.0pl1-128ubuntu2 on Ubuntu, the postinst maintainer script allows for group-crontab-to-root privilege escalation via symlink attacks against unsafe usage of the chown and chmod programs...

6.9CVSS6.8AI score0.00551EPSS
Exploits0References5
OSV
OSV
added 2017/06/09 4:29 p.m.3 views

CVE-2017-9525

In the cron package through 3.0pl1-128 on Debian, and through 3.0pl1-128ubuntu2 on Ubuntu, the postinst maintainer script allows for group-crontab-to-root privilege escalation via symlink attacks against unsafe usage of the chown and chmod programs...

6.7CVSS6.8AI score
Exploits0References5
Debian CVE
Debian CVE
added 2017/06/09 4:0 p.m.29 views

CVE-2017-9525

In the cron package through 3.0pl1-128 on Debian, and through 3.0pl1-128ubuntu2 on Ubuntu, the postinst maintainer script allows for group-crontab-to-root privilege escalation via symlink attacks against unsafe usage of the chown and chmod programs...

6.9CVSS6.8AI score0.00551EPSS
Exploits0
Cvelist
Cvelist
added 2017/06/09 4:0 p.m.31 views

CVE-2017-9525

In the cron package through 3.0pl1-128 on Debian, and through 3.0pl1-128ubuntu2 on Ubuntu, the postinst maintainer script allows for group-crontab-to-root privilege escalation via symlink attacks against unsafe usage of the chown and chmod programs...

6.7AI score0.00551EPSS
Exploits0References5
Rows per page
Query Builder