CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

88 matches found

Prion•added 2014/05/02 2:55 p.m.•12 views

Design/Logic Flaw

fish aka fish-shell 1.16.0 before 2.1.1 does not properly check the credentials, which allows local users to gain privileges via the universal variable socket, related to /tmp/fishd.socket.user permissions...

6.9CVSS6.8AI score0.0035EPSS

Exploits0References4Affected Software1

UbuntuCve•added 2014/05/02 2:55 p.m.•22 views

CVE-2014-2905

6.9CVSS7.1AI score0.0035EPSS

Exploits0References2

Cvelist•added 2014/05/02 2:0 p.m.•35 views

CVE-2014-2905

9AI score0.0035EPSS

Exploits0References4

Debian CVE•added 2014/05/02 2:0 p.m.•21 views

CVE-2014-2905

6.9CVSS7.6AI score0.0035EPSS

Exploits0

CVE•added 2014/05/02 2:0 p.m.•133 views

CVE-2014-2905

CVE-2014-2905 affects fish-shell (fish) versions prior to 2.1.1, where credentials are not properly checked over the universal variable socket (UNIX domain socket at /tmp/fishd.socket.user), enabling local privilege escalation. The root cause is improper validation of credentials when communicati...

6.9CVSS8.8AI score0.0035EPSS

Exploits0References4Affected Software1

Tenable Nessus•added 2013/07/15 12:0 a.m.•24 views

Fedora 17 : zeroinstall-injector-2.3-1.fc17 (2013-12421)

Enhancements : - upstream now ships an experimental OCaml front-end, this is not yet enabled - Add fish-shell command completion - Allow relative files in and for local feeds. This makes it easy to test feeds before passing them to 0repo. Bug fixes : - Better handling of default=' in bindings. Th...

4.3CVSS7.4AI score0.04857EPSS

Exploits0References6

Tenable Nessus•added 2013/07/15 12:0 a.m.•27 views

Fedora 18 : zeroinstall-injector-2.3-1.fc18 (2013-12396)

4.3CVSS7.4AI score0.04857EPSS

Exploits0References6

Tenable Nessus•added 2013/07/15 12:0 a.m.•22 views

Fedora 19 : zeroinstall-injector-2.3-1.fc19 (2013-12414)

4.3CVSS7.4AI score0.04857EPSS

Exploits0References6

Rows per page