Lucene search
K

4 matches found

OSV
OSV
added 2018/06/17 8:29 p.m.19 views

CVE-2018-12027

An Insecure Permissions vulnerability in SpawningKit in Phusion Passenger 5.3.x before 5.3.2 causes information disclosure in the following situation: given a Passenger-spawned application process that reports that it listens on a certain Unix domain socket, if any of the parent directories of sa...

8.8CVSS8.4AI score
Exploits0References2
NVD
NVD
added 2018/06/17 8:29 p.m.27 views

CVE-2018-12027

An Insecure Permissions vulnerability in SpawningKit in Phusion Passenger 5.3.x before 5.3.2 causes information disclosure in the following situation: given a Passenger-spawned application process that reports that it listens on a certain Unix domain socket, if any of the parent directories of sa...

8.8CVSS8.3AI score0.01088EPSS
Exploits0References2
Cvelist
Cvelist
added 2018/06/17 8:0 p.m.37 views

CVE-2018-12027

An Insecure Permissions vulnerability in SpawningKit in Phusion Passenger 5.3.x before 5.3.2 causes information disclosure in the following situation: given a Passenger-spawned application process that reports that it listens on a certain Unix domain socket, if any of the parent directories of sa...

8.3AI score0.01088EPSS
Exploits0References2
CVE
CVE
added 2018/06/17 8:0 p.m.68 views

CVE-2018-12027

Summary of CVE-2018-12027 (Phusion Passenger) : This vulnerability affects Phusion Passenger 5.3.x before 5.3.2, specifically the SpawningKit component. If a Passenger-spawned application reports a Unix domain socket and any parent directory of that socket is writable by a non‑application user, t...

8.8CVSS8.1AI score0.01088EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder