CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

The remote Ubuntu 16.04 ESM host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-5521-1 advisory. It was discovered that containerd insufficiently restricted permissions on container root and plugin directories. If a user or automated system were...

7.8CVSS7.2AI score0.06046EPSS

Exploits6References5

Prion•added 2021/04/22 8:15 p.m.•12 views

Information disclosure

A sensitive information disclosure vulnerability in the mosquitto message broker of Juniper Networks Junos OS may allow a locally authenticated user with shell access the ability to read portions of sensitive files, such as the master.passwd file. Since mosquitto is shipped with setuid permission...

2.1CVSS5AI score0.00035EPSS

Exploits0References1Affected Software1

Prion•added 2021/01/15 6:15 p.m.•12 views

Privilege escalation

A local privilege escalation vulnerability in telnetd.real of Juniper Networks Junos OS may allow a locally authenticated shell user to escalate privileges and execute arbitrary commands as root. telnetd.real is shipped with setuid permissions enabled and is owned by the root user, allowing local...

7.2CVSS8.1AI score0.00035EPSS

Exploits0References1Affected Software1

Prion•added 2021/01/15 6:15 p.m.•12 views

Information disclosure

A sensitive information disclosure vulnerability in delta-export configuration utility dexp of Juniper Networks Junos OS may allow a locally authenticated shell user the ability to create and read database files generated by the dexp utility, including password hashes of local users. Since dexp i...

7.2CVSS7AI score0.00026EPSS

Exploits0References1Affected Software1

Veracode•added 2020/12/06 3:22 a.m.•18 views

Privilege Escalation

s3d is vulnerable to privilege escalation. The pipeinitterminal function in main.c allows local users to gain privileges by leveraging setuid permissions and usage of bash 4.3 and earlier...

7.8CVSS5.2AI score0.00046EPSS

Exploits0References5Affected Software1

Veracode•added 2020/12/06 3:18 a.m.•18 views

Privilege Escalation

s3d is vulnerable to privilege escalation. The ptyinitterminal and pipeinitterminal functions in main.c allows local users to gain privileges by leveraging setuid permissions and usage of bash 4.3 and earlier...

7.8CVSS5.2AI score0.00043EPSS

Exploits0References8Affected Software1

Tenable Nessus•added 2019/01/11 12:0 a.m.•28 views

Fedora 29 : beep (2018-92eff16e03)

Security fix for CVE-2018-1000532, new non-root permissions and a few smaller fixes. Fix a directory traversal issue introduced with the fix for CVE-2018-1000532, and refuses to run as setuid root or via sudo to avoid any more priviledge escalation issue. ---- Security fix for CVE-2018-1000532 an...

4.7CVSS5.5AI score0.00126EPSS

Exploits0References2

OSV•added 2018/04/06 5:29 p.m.•3 views

CVE-2014-1226

The pipeinitterminal function in main.c in s3dvt allows local users to gain privileges by leveraging setuid permissions and usage of bash 4.3 and earlier. NOTE: This vulnerability exists because of an incomplete fix for CVE-2013-6876...

7.8CVSS7.7AI score0.00046EPSS

Exploits0References6

NVD•added 2018/04/06 5:29 p.m.•12 views

CVE-2013-6876

The 1 ptyinitterminal and 2 pipeinitterminal functions in main.c in s3dvt 0.2.2 and earlier allows local users to gain privileges by leveraging setuid permissions and usage of bash 4.3 and earlier. NOTE: this vulnerability was fixed with commit ad732f00b411b092c66a04c359da0f16ec3b387, but the...

7.8CVSS7.5AI score0.00043EPSS

Exploits0References7

Prion•added 2018/04/06 5:29 p.m.•17 views

Design/Logic Flaw

7.2CVSS7.6AI score0.00046EPSS

Exploits0References4Affected Software1