CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

Tenable Nessus•added 2023/11/07 12:0 a.m.•19 views

Rocky Linux 9 : pcs (RLSA-2022:6313)

The remote Rocky Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2022:6313 advisory. - A vulnerability was found in the PCS project. This issue occurs due to incorrect permissions on a Unix socket used for internal communication between PCS...

7.8CVSS7.4AI score0.00051EPSS

Exploits0References3

Tenable Nessus•added 2022/10/08 12:0 a.m.•20 views

AlmaLinux 8 : pcs (ALSA-2022:6314)

The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2022:6314 advisory. - A vulnerability was found in the PCS project. This issue occurs due to incorrect permissions on a Unix socket used for internal communication between PCS daemons...

7.8CVSS7.4AI score0.00051EPSS

Exploits0References2

Tenable Nessus•added 2022/09/07 12:0 a.m.•31 views

Debian DSA-5226-1 : pcs - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5226 advisory. - A flaw was found in the Pacemaker configuration tool pcs. The pcs daemon was allowing expired accounts, and accounts with expired passwords to login when using...

8.8CVSS7.4AI score0.00274EPSS

Exploits1References8

NVD•added 2022/09/06 6:15 p.m.•10 views

CVE-2022-2735

A vulnerability was found in the PCS project. This issue occurs due to incorrect permissions on a Unix socket used for internal communication between PCS daemons. A privilege escalation could happen by obtaining an authentication token for a hacluster user. With the "hacluster" token, this flaw...

7.8CVSS0.00051EPSS

Exploits0References4

OSV•added 2022/09/06 6:15 p.m.•19 views

CVE-2022-2735

7.8CVSS7.9AI score0.00051EPSS

Exploits0References4

Prion•added 2022/09/06 6:15 p.m.•14 views

Privilege escalation

4.3CVSS7.7AI score0.00051EPSS

Exploits0References4Affected Software2

UbuntuCve•added 2022/09/06 6:15 p.m.•22 views

CVE-2022-2735

7.8CVSS7AI score0.00051EPSS

Exploits0References3

Debian CVE•added 2022/09/06 5:18 p.m.•36 views

CVE-2022-2735

7.8CVSS7.8AI score0.00051EPSS

Exploits0

CVE•added 2022/09/06 5:18 p.m.•104 views

CVE-2022-2735

CVE-2022-2735 affects the PCS project. The root cause is incorrect permissions on the Unix socket used for internal PCS daemon communication, enabling a privilege escalation by obtaining an authentication token for a hacluster user. With that token, an attacker could gain complete control over th...

7.8CVSS7.7AI score0.00051EPSS

Exploits0References4Affected Software1

Cvelist•added 2022/09/06 5:18 p.m.•16 views

CVE-2022-2735

8.1AI score0.00051EPSS

Exploits0References4

RedHat Linux•added 2022/09/05 3:21 p.m.•5 views

pcs: obtaining an authentication token for hacluster user could lead to privilege escalation

7.8CVSS5.8AI score0.00051EPSS

Exploits0References5

RedhatCVE•added 2022/09/01 2:27 p.m.•29 views

CVE-2022-2735

8.4CVSS3.7AI score0.00051EPSS

Exploits0References4

Tenable Nessus•added 2022/09/01 12:0 a.m.•22 views

Oracle Linux 9 : pcs (ELSA-2022-9753)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2022-9753 advisory. 0.11.1-10.el90.2 - Fixed ruby socket permissions - Resolves: rhbz2116839 Tenable has extracted the preceding description block directly from the Oracle Linux...

7.8CVSS7.5AI score0.00051EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by