Lucene search
K

7 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.3 views

MiracleLinux 9 : rpm-4.16.1.3-27.el9_3 (AXSA:2024-7473:01)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-7473:01 advisory. rpm: TOCTOU race in checks for unsafe symlinks CVE-2021-35937 rpm: races with chown/chmod/capabilities calls during installation CVE-2021-35938 rpm:...

6.7CVSS7AI score0.00491EPSS
Exploits3References4
RedHat Linux
RedHat Linux
added 2024/02/01 12:39 p.m.3 views

rpm: checks for unsafe symlinks are not performed for intermediary directories

It was found that the fix for CVE-2017-7500 and CVE-2017-7501 was incomplete: the check was only implemented for the parent directory of the file to be created. A local unprivileged user who owns another ancestor directory could potentially use this flaw to gain root privileges. The highest threa...

6.7CVSS7AI score0.00481EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2024/01/30 1:30 p.m.5 views

rpm: checks for unsafe symlinks are not performed for intermediary directories

It was found that the fix for CVE-2017-7500 and CVE-2017-7501 was incomplete: the check was only implemented for the parent directory of the file to be created. A local unprivileged user who owns another ancestor directory could potentially use this flaw to gain root privileges. The highest threa...

6.7CVSS7AI score0.00481EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2024/01/25 11:15 a.m.3 views

rpm: checks for unsafe symlinks are not performed for intermediary directories

It was found that the fix for CVE-2017-7500 and CVE-2017-7501 was incomplete: the check was only implemented for the parent directory of the file to be created. A local unprivileged user who owns another ancestor directory could potentially use this flaw to gain root privileges. The highest threa...

6.7CVSS7AI score0.00481EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2024/01/25 11:1 a.m.5 views

rpm: checks for unsafe symlinks are not performed for intermediary directories

It was found that the fix for CVE-2017-7500 and CVE-2017-7501 was incomplete: the check was only implemented for the parent directory of the file to be created. A local unprivileged user who owns another ancestor directory could potentially use this flaw to gain root privileges. The highest threa...

6.7CVSS7AI score0.00481EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2024/01/25 9:1 a.m.4 views

rpm: checks for unsafe symlinks are not performed for intermediary directories

It was found that the fix for CVE-2017-7500 and CVE-2017-7501 was incomplete: the check was only implemented for the parent directory of the file to be created. A local unprivileged user who owns another ancestor directory could potentially use this flaw to gain root privileges. The highest threa...

6.7CVSS7AI score0.00481EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2024/01/25 8:2 a.m.2 views

rpm: checks for unsafe symlinks are not performed for intermediary directories

It was found that the fix for CVE-2017-7500 and CVE-2017-7501 was incomplete: the check was only implemented for the parent directory of the file to be created. A local unprivileged user who owns another ancestor directory could potentially use this flaw to gain root privileges. The highest threa...

6.7CVSS7AI score0.00481EPSS
Exploits1References5
Rows per page
Query Builder