4 matches found
MagniComp SysInfo Information Exposure
MagniComp SysInfo Information Exposure CVE-2018-7268 ====================================================== The latest version of this advisory is available at: https://sintonen.fi/advisories/magnicomp-sysinfo-information-exposure.txt Overview -------- MagniComp SysInfo contains a information...
CVE-2018-7268
MagniComp SysInfo before 10-H81, as shipped with BMC BladeLogic Automation and other products, contains an information exposure vulnerability in which a local unprivileged user is able to read any root uid 0 owned file on the system, regardless of the file permissions. Confidential information su...
CVE-2018-7268
MagniComp SysInfo before 10-H81, as shipped with BMC BladeLogic Automation and other products, contains an information exposure vulnerability in which a local unprivileged user is able to read any root uid 0 owned file on the system, regardless of the file permissions. Confidential information su...
CVE-2018-7268
MagniComp SysInfo before 10-H81 (bundled with BMC BladeLogic Automation and other products) is affected by an information disclosure vulnerability. A local, unprivileged user can read any root-owned file on the system (eg, /etc/shadow, log files, private keys) due to a combination of a setuid bin...