13 matches found
Linux Distros Unpatched Vulnerability : CVE-2024-22029
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insecure permissions in the packaging of tomcat allow local users that win a race during package installation to escalate to root CVE-2024-22029 Note that Nessu...
CVE-2024-22029
Insecure permissions in the packaging of tomcat allow local users that win a race during package installation to escalate to root...
CVE-2024-22029
Insecure permissions in the packaging of tomcat allow local users that win a race during package installation to escalate to root...
CVE-2024-22029
CVE-2024-22029 concerns insecure permissions in the packaging of Tomcat, enabling local privilege escalation for a race-condition during package installation. The connected advisories describe affected Tomcat packaging and note that patches/fixed packages are released by vendors (SUSE/OpenSUSE, D...
CVE-2024-22029 tomcat packaging allows for escalation to root from tomcat user
Insecure permissions in the packaging of tomcat allow local users that win a race during package installation to escalate to root...
CVE-2024-22029
Insecure permissions in the packaging of tomcat allow local users that win a race during package installation to escalate to root...
CVE-2024-22029 tomcat packaging allows for escalation to root from tomcat user
Insecure permissions in the packaging of tomcat allow local users that win a race during package installation to escalate to root...
CVE-2024-22029
A flaw was found in the Tomcat package of OpenSUSE and derived distributions. This issue occurs due to incorrect permissions and a race condition in the %post section of the Tomcat RPM package, resulting in local privilege escalation when the Tomcat package is re-installed...
openSUSE Security Advisory (SUSE-SU-2024:0473-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE Security Advisory (SUSE-SU-2024:0472-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLES15: tomcat10 / tomcat10-admin-webapps / tomcat10-docs-webapp / etc (SUSE-SU-2024:0473-1)
The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2024:0473-1 advisory. - CVE-2024-22029: Fixed escalation to root from tomcat user via %post script. bsc1219208 Tenable has extracted the preceding...
SUSE: Security Advisory (SUSE-SU-2024:0472-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2024:0473-1 Security update for tomcat10
This update for tomcat10 fixes the following issues: - CVE-2024-22029: Fixed escalation to root from tomcat user via %post script. bsc1219208...