Lucene search
K

9 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 4:26 a.m.3 views

SUSE CVE-2018-12560

An issue was discovered in the cantata-mounter D-Bus service in Cantata through 2.3.1. Arbitrary unmounts can be performed by regular users via directory traversal sequences such as a home/../sys/kernel substring...

6.5CVSS7.2AI score0.01784EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.18 views

Mageia: Security Advisory (MGASA-2018-0314)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.6AI score0.02068EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2019/01/03 12:0 a.m.16 views

Fedora 28 : cantata (2018-d1f6c8957f)

Latest upstream release, omits some mounting code found to be insecure and not well tested. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possib...

9.8CVSS7.1AI score0.02068EPSS
Exploits0References5
Mageia
Mageia
added 2018/07/13 7:1 p.m.53 views

Updated cantata packages fix security vulnerability

The mount target path check in mounter.cpp 'mpOk' is insufficient. A regular user can this way mount a CIFS filesystem anywhere, and not just beneath /home by passing relative path components CVE-2018-12559. Arbitrary unmounts can be performed by regular users the same way CVE-2018-12560. A regul...

9.8CVSS1.6AI score0.02068EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2018/07/09 12:0 a.m.21 views

Fedora 27 : cantata (2018-9296823b6c)

Latest upstream release, omits some mounting code found to be insecure and not well tested. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possib...

9.8CVSS7.1AI score0.02068EPSS
Exploits0References5
ArchLinux
ArchLinux
added 2018/06/20 12:0 a.m.27 views

[ASA-201806-12] cantata: multiple issues

Arch Linux Security Advisory ASA-201806-12 ========================================== Severity: High Date : 2018-06-20 CVE-ID : CVE-2018-12559 CVE-2018-12560 CVE-2018-12561 CVE-2018-12562 Package : cantata Type : multiple issues Remote : No Link : https://security.archlinux.org/AVG-721 Summary...

9.8CVSS1.1AI score0.02068EPSS
Exploits0References8
OSV
OSV
added 2018/06/19 5:29 a.m.1 views

DEBIAN-CVE-2018-12560

An issue was discovered in the cantata-mounter D-Bus service in Cantata through 2.3.1. Arbitrary unmounts can be performed by regular users via directory traversal sequences such as a home/../sys/kernel substring...

6.5CVSS7.7AI score0.01784EPSS
Exploits0References1
CVE
CVE
added 2018/06/19 5:0 a.m.69 views

CVE-2018-12560

CVE-2018-12560 affects Cantata up to 2.3.1 and is tied to the cantata-mounter D-Bus service. The Mageia advisory details a set of related issues (CVE-2018-12559..12562) where a regular user could perform arbitrary unmounts via directory traversal (home/../sys/kernel) and, by manipulating mount in...

6.5CVSS7.6AI score0.01784EPSS
Exploits0References1Affected Software1
Debian CVE
Debian CVE
added 2018/06/19 5:0 a.m.25 views

CVE-2018-12560

An issue was discovered in the cantata-mounter D-Bus service in Cantata through 2.3.1. Arbitrary unmounts can be performed by regular users via directory traversal sequences such as a home/../sys/kernel substring...

6.5CVSS7.9AI score0.01784EPSS
Exploits0
Rows per page
Query Builder