Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

NVD
NVDadded 2016/01/02 5:59 a.m.8 views

CVE-2015-7442

consoleinst.sh in IBM Installation Manager before 1.7.4.4 and 1.8.x before 1.8.4 and Packaging Utility before 1.7.4.4 and 1.8.x before 1.8.4 allows local users to gain privileges via a Trojan horse program that is located in /tmp with a name based on a predicted PID value...

7CVSS6.8AI score0.00127EPSS
Exploits0References2
Prion
Prionadded 2016/01/02 5:59 a.m.5 views

Code injection

consoleinst.sh in IBM Installation Manager before 1.7.4.4 and 1.8.x before 1.8.4 and Packaging Utility before 1.7.4.4 and 1.8.x before 1.8.4 allows local users to gain privileges via a Trojan horse program that is located in /tmp with a name based on a predicted PID value...

6.2CVSS6.8AI score0.00127EPSS
Exploits0References2Affected Software2
Cvelist
Cvelistadded 2016/01/02 2:0 a.m.13 views

CVE-2015-7442

consoleinst.sh in IBM Installation Manager before 1.7.4.4 and 1.8.x before 1.8.4 and Packaging Utility before 1.7.4.4 and 1.8.x before 1.8.4 allows local users to gain privileges via a Trojan horse program that is located in /tmp with a name based on a predicted PID value...

6.8AI score0.00127EPSS
Exploits0References2
Prion
Prionadded 2013/04/24 7:55 p.m.17 views

Design/Logic Flaw

The scmcheckcreds function in net/core/scm.c in the Linux kernel before 3.8.6 does not properly enforce capability requirements for controlling the PID value associated with a UNIX domain socket, which allows local users to bypass intended access restrictions by leveraging the time interval durin...

1.9CVSS6.7AI score0.00039EPSS
Exploits1References4Affected Software1
CVE
CVEadded 2013/04/24 7:0 p.m.66 views

CVE-2013-1958

CVE-2013-1958 affects Linux kernels before 3.8.6 where scm_check_creds in net/core/scm.c fails to enforce capabilities for the PID value tied to a UNIX domain socket, allowing local users to bypass access controls during a window when a user namespace exists but a PID namespace is not yet created...

1.9CVSS6.2AI score0.00039EPSS
Exploits1References4Affected Software1
Cvelist
Cvelistadded 2013/04/24 7:0 p.m.18 views

CVE-2013-1958

The scmcheckcreds function in net/core/scm.c in the Linux kernel before 3.8.6 does not properly enforce capability requirements for controlling the PID value associated with a UNIX domain socket, which allows local users to bypass intended access restrictions by leveraging the time interval durin...

6AI score0.00039EPSS
Exploits1References4
Prion
Prionadded 2012/08/26 7:55 p.m.18 views

Race condition

Race condition in Tunnelblick 3.3beta20 and earlier allows local users to kill unintended processes by waiting for a specific PID value to be assigned to a target process...

1.2CVSS6.8AI score0.00023EPSS
Exploits0References3Affected Software1
Cvelist
Cvelistadded 2012/08/26 7:0 p.m.19 views

CVE-2012-3487

Race condition in Tunnelblick 3.3beta20 and earlier allows local users to kill unintended processes by waiting for a specific PID value to be assigned to a target process...

6.3AI score0.00023EPSS
Exploits0References3
Rows per page
Query Builder