CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

SUSE CVE•added 2023/02/15 3:54 a.m.•1 views

SUSE CVE-2020-24330

An issue was discovered in TrouSerS through 0.3.14. If the tcsd daemon is started with root privileges instead of by the tss user, it fails to drop the root gid privilege when no longer needed...

7.8CVSS7.1AI score0.00157EPSS

Exploits1References5

Tenable Nessus•added 2021/05/19 12:0 a.m.•32 views

RHEL 8 : trousers (RHSA-2021:1627)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:1627 advisory. TrouSerS is an implementation of the Trusted Computing Group's Software Stack TSS specification. TrouSerS enables the user to write...

7.8CVSS6.9AI score0.00188EPSS

Exploits3References10

Tenable Nessus•added 2021/05/19 12:0 a.m.•44 views

CentOS 8 : trousers (CESA-2021:1627)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2021:1627 advisory. - trousers: fails to drop the root gid privilege when no longer needed CVE-2020-24330 - trousers: tss user still has read and write access to the...

7.8CVSS6.7AI score0.00188EPSS

Exploits3References4

OpenVAS•added 2020/10/12 12:0 a.m.•21 views

Huawei EulerOS: Security Advisory for trousers (EulerOS-SA-2020-2172)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.7AI score0.00188EPSS

Exploits3References2

Microsoft CVE•added 2020/08/20 7:0 a.m.•1 views

An issue was discovered in TrouSerS through 0.3.14. If the tcsd daemon is started with root privileges instead of by the tss user it fails to drop the root gid privilege when no longer needed.

...

7.8CVSS7AI score0.00157EPSS

Exploits1

OSV•added 2020/08/13 5:15 p.m.•0 views

UBUNTU-CVE-2020-24330

An issue was discovered in TrouSerS through 0.3.14. If the tcsd daemon is started with root privileges instead of by the tss user, it fails to drop the root gid privilege when no longer needed...

7.8CVSS7.1AI score0.00157EPSS

Exploits1References5

Exploit DB•added 2016/08/12 12:0 a.m.•36 views

FreePBX 13/14 - Remote Command Execution / Privilege Escalation

!/usr/bin/env python -- coding, latin-1 -- DESCRIPTION FreePBX 13 remote root 0day - Found and exploited by pgt @ nullsecurity.net AUTHOR pgt - nullsecurity.net DATE 8-12-2016 VERSION freepbx0day.py 0.1 AFFECTED VERSIONS FreePBX 13 & 14 System Recordings Module versions: 13.0.1beta1 - 13.0.26 STA...

7.4AI score

Exploits0

OpenVAS•added 2011/04/01 12:0 a.m.•35 views

Mandriva Update for apache MDVSA-2011:057 (apache)

Check for the Version of apache OpenVAS Vulnerability Test Mandriva Update for apache MDVSA-2011:057 apache Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...

4.3CVSS0.00708EPSS

Exploits0References2

Prion•added 2011/03/29 6:55 p.m.•23 views

Design/Logic Flaw

The configuration merger in itk.c in the Steinar H. Gunderson mpm-itk Multi-Processing Module 2.2.11-01 and 2.2.11-02 for the Apache HTTP Server does not properly handle certain configuration sections that specify NiceValue but not AssignUserID, which might allow remote attackers to gain privileg...

4.3CVSS7.3AI score0.00708EPSS

Exploits0References12Affected Software2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by