Lucene search
K

28 matches found

EUVD
EUVD
added 2026/04/06 3:2 p.m.4 views

EUVD-2026-19291

Pi-hole is a Linux network-level advertisement and Internet tracker blocking application. Version 6.4 has a local privilege-escalation vulnerability allows code execution as root from the low-privilege pihole account. Important context: the pihole account uses nologin, so this is not a direct...

6.4CVSS6.3AI score0.00216EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/04/06 12:0 a.m.2 views

PT-2026-30655

Pi-hole is a Linux network-level advertisement and Internet tracker blocking application. Version 6.4 has a local privilege-escalation vulnerability allows code execution as root from the low-privilege pihole account. Important context: the pihole account uses nologin, so this is not a direct...

6.4CVSS6.3AI score0.00216EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-11758

Malware in sbrugna...

5.3CVSS5.5AI score0.00315EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.15 views

RHEL 6 : setup (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - setup: nologin listed in /etc/shells violates security expectations CVE-2018-1113 Note that Nessus has not tested f...

5.3CVSS7AI score0.00315EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2023/10/31 2:39 a.m.4 views

SUSE CVE-2018-1113

setup before version 2.11.4-1.fc28 in Fedora and Red Hat Enterprise Linux added /sbin/nologin and /usr/sbin/nologin to /etc/shells. This violates security assumptions made by pamshells and some daemons which allow access based on a user's shell being listed in /etc/shells. Under some circumstance...

5.3CVSS9.4AI score0.00315EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/04/07 12:0 a.m.17 views

SUSE: Security Advisory (SUSE-SU-2022:1105-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS5.3AI score0.00661EPSS
Exploits1References25
OSV
OSV
added 2022/04/04 3:49 p.m.8 views

SUSE-SU-2022:1108-1 Security update for util-linux

This update for util-linux fixes the following issues: - Improve throughput and reduce clock sequence increments for high load situation with time based version 1 uuids. bsc1194642 - Prevent root owning of /var/lib/libuuid/clock.txt. bsc1194642 - Warn if uuidd lock state is not usable. bsc1194642...

5.5CVSS6AI score0.00661EPSS
Exploits1References16
OpenVAS
OpenVAS
added 2021/10/20 12:0 a.m.18 views

SUSE: Security Advisory (SUSE-SU-2021:3463-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS5.3AI score0.00661EPSS
Exploits1References23
OSV
OSV
added 2021/10/19 7:27 a.m.10 views

SUSE-SU-2021:3463-1 Security update for util-linux

This update for util-linux fixes the following issues: - CVE-2021-37600: Fixed an integer overflow which could lead to buffer overflow in getsemelements. bsc1188921 - Prevent outdated pam files bsc1082293, bsc1081947c68. - Do not trim read-only volumes bsc1106214. - libmount: To prevent incorrect...

5.5CVSS6.1AI score0.00661EPSS
Exploits1References22
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.17 views

SUSE: Security Advisory (SUSE-SU-2017:1398-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.2AI score0.02705EPSS
Exploits1References6
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.16 views

Huawei EulerOS: Security Advisory for setup (EulerOS-SA-2018-1394)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.3CVSS5.7AI score0.00315EPSS
Exploits0References2
Oracle linux
Oracle linux
added 2019/08/13 12:0 a.m.65 views

bind security, bug fix, and enhancement update

32:9.11.4-9.P2 - Fix CVE-2019-6471 32:9.11.4-8.P2 - Fix scriptlet errors when selinux-policy is not installed 1647659 32:9.11.4-7.P2 - Fix inefective limit of TCP clients CVE-2018-5743 32:9.11.4-6.P2 - Use /sbin/nologin again 1676661 32:9.11.4-5.P2 - Make sure selinux-policy is installed soon...

7.5CVSS0.2AI score0.06404EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2019/02/14 12:0 a.m.24 views

Amazon Linux 2 : setup (ALAS-2019-1158)

Setup in Amazon Linux 2 added /sbin/nologin and /usr/sbin/nologin to /etc/shells. This violates security assumptions made by pamshells and some daemons which allow access based on a user's shell being listed in /etc/shells. Under some circumstances, users which had their shell changed to...

5.3CVSS6.2AI score0.00315EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/01/03 12:0 a.m.21 views

Fedora 28 : setup (2018-f47268acd5)

don't list nologin in /etc/shells 1378893 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...

5.3CVSS6.1AI score0.00315EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2018/12/28 12:0 a.m.22 views

EulerOS 2.0 SP2 : setup (EulerOS-SA-2018-1421)

According to the version of the setup package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - setup: nologin listed in /etc/shells violates security expectations CVE-2018-1113 Note that Tenable Network Security has extracted the preceding...

5.3CVSS6.2AI score0.00315EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2018/11/27 12:0 a.m.30 views

Scientific Linux Security Update : setup on SL7.x (noarch) (20181030)

Security Fixes : - setup: nologin listed in /etc/shells violates security expectations CVE-2018-1113 C Tenable Network Security, Inc. The descriptive text is C Scientific Linux. include'compat.inc'; if description scriptid119199; scriptversion"1.5";...

5.3CVSS6AI score0.00315EPSS
Exploits0References2
Cent OS
Cent OS
added 2018/11/15 6:52 p.m.117 views

setup security update

CentOS Errata and Security Advisory CESA-2018:3249 An update for setup is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating,...

5.3CVSS6.2AI score0.00315EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2018/10/31 12:0 a.m.97 views

RHEL 7 : setup (RHSA-2018:3249)

The remote Redhat Enterprise Linux 7 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2018:3249 advisory. The setup package contains a set of important default system configuration and setup files. Examples include /etc/passwd, /etc/group, and /etc/profil...

5.3CVSS6.3AI score0.00315EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2018/10/30 1:28 p.m.4 views

setup: nologin listed in /etc/shells violates security expectations

Setup in Fedora and Red Hat Enterprise Linux added /sbin/nologin and /usr/sbin/nologin to /etc/shells. This violates security assumptions made by pamshells and some daemons which allow access based on a user's shell being listed in /etc/shells. Under some circumstances, users which had their shel...

5.3CVSS7.4AI score0.00315EPSS
Exploits0References4
CNVD
CNVD
added 2018/07/05 12:0 a.m.2 views

Fedora and Red Hat Enterprise Linux Unauthorized Access Vulnerability

Fedora is a Linux-based operating system developed by the Fedora Project community and sponsored by Red Hat, Inc.Red Hat Enterprise Linux RHEL is a set of Linux operating systems for business users maintained and distributed by Red Hat, Inc. A security vulnerability exists in Fedora and previous...

5.3CVSS5.5AI score0.00315EPSS
Exploits0References1
Rows per page
Query Builder