Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

2197 matches found

Cvelist
Cvelistadded 2012/12/26 10:0 p.m.25 views

CVE-2012-0961

Apt 0.8.16exp5ubuntu13.x before 0.8.16exp5ubuntu13.6, 0.8.16exp12ubuntu10.x before 0.8.16exp12ubuntu10.7, and 0.9.7.5ubuntu5.x before 0.9.7.5ubuntu5.2, as used in Ubuntu, uses world-readable permissions for /var/log/apt/term.log, which allows local users to obtain sensitive shell information by...

5.7AI score0.00352EPSS
Exploits0References4
Debian CVE
Debian CVEadded 2012/12/26 10:0 p.m.21 views

CVE-2012-5483

tools/sampledata.sh in OpenStack Keystone 2012.1.3, when access to Amazon Elastic Compute Cloud Amazon EC2 is configured, uses world-readable permissions for /etc/keystone/ec2rc, which allows local users to obtain access to EC2 services by reading administrative access and secret values from this...

2.1CVSS6AI score0.00341EPSS
Exploits0
UbuntuCve
UbuntuCveadded 2012/12/12 12:0 a.m.26 views

CVE-2012-0961

Apt 0.8.16exp5ubuntu13.x before 0.8.16exp5ubuntu13.6, 0.8.16exp12ubuntu10.x before 0.8.16exp12ubuntu10.7, and 0.9.7.5ubuntu5.x before 0.9.7.5ubuntu5.2, as used in Ubuntu, uses world-readable permissions for /var/log/apt/term.log, which allows local users to obtain sensitive shell information by...

2.1CVSS5.9AI score0.00352EPSS
Exploits0References2
RedHat Linux
RedHat Linuxadded 2012/12/04 7:32 p.m.3 views

pulp /etc/pulp/pulp.conf world readable, contains default admin password

Pulp in Red Hat CloudForms before 1.1 uses world-readable permissions for pulp.conf, which allows local users to read the administrative password by reading this file...

2.1CVSS5.8AI score0.00361EPSS
Exploits0References4
RedHat Linux
RedHat Linuxadded 2012/12/04 7:32 p.m.0 views

katello: pulp admin password logged in plaintext in world-readable katello/production.log

Pulp in Red Hat CloudForms before 1.1 logs administrative passwords in a world-readable file, which allows local users to read pulp administrative passwords by reading production.log...

3.3CVSS5.8AI score0.00638EPSS
Exploits0References4
securityvulns
securityvulnsadded 2012/12/03 12:0 a.m.30 views

Safend Data Protector information leakage

Private key is logged into user readable file...

2.2AI score0.00484EPSS
Exploits3References1Affected Software1
Packet Storm
Packet Stormadded 2012/11/29 12:0 a.m.27 views

Oracle Exadata Leaf Switch Weak Logins

Oracle Exadata leaf switch logins From Oracle.com "Oracle Exadata is the only database machine that provides extreme performance for both data warehousing and OLTP applications, making it the ideal platform for consolidating on private clouds. It is a complete package of servers, storage,...

Exploits0
RedHat Linux
RedHat Linuxadded 2012/10/15 6:30 p.m.3 views

rhncfg: Insecure permissions used for /var/log/rhncfg-actions file

Red Hat Network RHN Configuration Client rhncfg-client in rhncfg before 5.10.27-8 uses weak permissions world-readable for /var/log/rhncfg-actions, which allows local users to obtain sensitive information about the rhncfg-client actions by reading the file...

2.1CVSS5.8AI score0.00389EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2012/10/15 12:0 a.m.29 views

Fedora 17 : dracut-018-105.git20120927.fc17 (2012-14953)

dracut-018-105.git20120927 - enable the use of the nbd port with e.g. '-N ltsp' - actually make resetoverlay working for squash overlays - fixed FIPS - if any mdraid found, make dracut run on shutdown - make the initramfs non-world readable Note that Tenable Network Security has extracted the...

2.1CVSS7.3AI score0.00364EPSS
Exploits0References3
OSV
OSVadded 2012/10/09 11:55 p.m.1 views

DEBIAN-CVE-2012-4453

dracut.sh in dracut, as used in Red Hat Enterprise Linux 6, Fedora 16 and 17, and possibly other products, creates initramfs images with world-readable permissions, which might allow local users to obtain sensitive information...

2.1CVSS6.6AI score0.00364EPSS
Exploits0References1
OSV
OSVadded 2012/10/09 11:55 p.m.5 views

CVE-2012-4453

dracut.sh in dracut, as used in Red Hat Enterprise Linux 6, Fedora 16 and 17, and possibly other products, creates initramfs images with world-readable permissions, which might allow local users to obtain sensitive information...

6AI score
Exploits0References13
UbuntuCve
UbuntuCveadded 2012/10/09 11:55 p.m.20 views

CVE-2012-4453

dracut.sh in dracut, as used in Red Hat Enterprise Linux 6, Fedora 16 and 17, and possibly other products, creates initramfs images with world-readable permissions, which might allow local users to obtain sensitive information...

2.1CVSS7AI score0.00364EPSS
Exploits0References1
Prion
Prionadded 2012/10/09 11:55 p.m.15 views

Information disclosure

dracut.sh in dracut, as used in Red Hat Enterprise Linux 6, Fedora 16 and 17, and possibly other products, creates initramfs images with world-readable permissions, which might allow local users to obtain sensitive information...

2.1CVSS6.4AI score0.00364EPSS
Exploits0References8Affected Software5
OSV
OSVadded 2012/10/09 11:55 p.m.5 views

UBUNTU-CVE-2012-4453

dracut.sh in dracut, as used in Red Hat Enterprise Linux 6, Fedora 16 and 17, and possibly other products, creates initramfs images with world-readable permissions, which might allow local users to obtain sensitive information...

2.1CVSS7.1AI score0.00364EPSS
Exploits0References2
OpenVAS
OpenVASadded 2012/08/30 12:0 a.m.15 views

Fedora Update for perl-Config-IniFiles FEDORA-2012-7763

Check for the Version of perl-Config-IniFiles OpenVAS Vulnerability Test Fedora Update for perl-Config-IniFiles FEDORA-2012-7763 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it...

3.6CVSS6.4AI score0.00504EPSS
Exploits2References2
OSV
OSVadded 2012/08/27 11:55 p.m.1 views

DEBIAN-CVE-2011-4944

Python 2.6 through 3.2 creates /.pypirc with world-readable permissions before changing them after data has been written, which introduces a race condition that allows local users to obtain a username and password by reading this file...

1.9CVSS8.2AI score0.00432EPSS
Exploits1References1
Prion
Prionadded 2012/08/27 11:55 p.m.23 views

Race condition

Python 2.6 through 3.2 creates /.pypirc with world-readable permissions before changing them after data has been written, which introduces a race condition that allows local users to obtain a username and password by reading this file...

1.9CVSS6.5AI score0.00432EPSS
Exploits1References20Affected Software1
OSV
OSVadded 2012/08/27 11:0 p.m.3 views

PSF-2012-2 pypirc created insecurely

Python 2.6 through 3.2 creates /.pypirc with world-readable permissions before changing them after data has been written, which introduces a race condition that allows local users to obtain a username and password by reading this file...

1.9CVSS8.9AI score0.00432EPSS
Exploits1References1
UbuntuCve
UbuntuCveadded 2012/08/12 12:55 a.m.16 views

CVE-2012-3457

PNP4Nagios 0.6 through 0.6.16 uses world-readable permissions for processperfdata.cfg, which allows local users to obtain the Gearman shared secret by reading the file...

2.1CVSS5.9AI score0.00342EPSS
Exploits0References1
CVE
CVEadded 2012/08/12 12:0 a.m.40 views

CVE-2012-3457

CVE-2012-3457 affects PNP4Nagios 0.6–0.6.16. The root cause is world-readable permissions on the file process_perfdata.cfg , which allows local users to read the Gearman shared secret . Public references include NVD, OpenVAS/Fedora advisories, and Ubuntu/Prion entries confirming the same vulnerab...

2.1CVSS6.1AI score0.00342EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder