Lucene search
K

6 matches found

Tenable Nessus
Tenable Nessus
added 2018/05/15 12:0 a.m.27 views

Debian DSA-4200-1 : kwallet-pam - security update

Fabian Vogt discovered that incorrect permission handling in the PAM module of the KDE Wallet could allow an unprivileged local user to gain ownership of arbitrary files. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security...

7.8CVSS7.5AI score0.00434EPSS
Exploits0References4
OSV
OSV
added 2018/05/14 12:0 a.m.18 views

DSA-4200-1 kwallet-pam - security update

Bulletin has no description...

7.8CVSS7.4AI score0.00434EPSS
Exploits0
OpenVAS
OpenVAS
added 2018/05/13 12:0 a.m.48 views

Debian: Security Advisory (DSA-4200-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.6AI score0.00434EPSS
Exploits0References4
OSV
OSV
added 2018/05/08 12:29 p.m.1 views

DEBIAN-CVE-2018-10380

kwallet-pam in KDE KWallet before 5.12.6 allows local users to obtain ownership of arbitrary files via a symlink attack...

7.8CVSS6.6AI score0.00434EPSS
Exploits0References1
CVE
CVE
added 2018/05/08 8:0 a.m.68 views

CVE-2018-10380

CVE-2018-10380 affects kwallet-pam in KDE KWallet prior to 5.12.6, where local users can exploit a symlink to obtain ownership of arbitrary files. The vulnerability stems from insecure permission handling in the PAM module, enabling local privilege elevation with complete confidentiality, integri...

7.8CVSS7.1AI score0.00434EPSS
Exploits0References7Affected Software1
Tenable Nessus
Tenable Nessus
added 2018/05/07 12:0 a.m.21 views

FreeBSD : KWallet-PAM -- Access to privileged files (83a548b5-4fa5-11e8-9a8e-001e2a3f778d)

The KDE Community reports : kwallet-pam was doing file writing and permission changing as root that with correct timing and use of carefully crafted symbolic links could allow a non privileged user to become the owner of any file on the system. C Tenable Network Security, Inc. The descriptive tex...

5.5AI score
Exploits0References2
Rows per page
Query Builder