CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4723 matches found

OpenVAS•added 2015/11/11 12:0 a.m.•27 views

CentOS Update for libipa_hbac CESA-2015:2019 centos6

Check the version of libipahbac SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.882323";...

6.8CVSS7.2AI score0.03666EPSS

Exploits0References2

OSV•added 2015/11/10 9:26 p.m.•6 views

MGASA-2015-0443 Updated sudo packages fix security vulnerability

An unauthorized privilege escalation was found in sudoedit in sudo before 1.8.15 when a user is granted with root access to modify a particular file that could be located in a subset of directories. It seems that sudoedit does not check the full path if a wildcard is used twice e.g...

7.2CVSS6.2AI score0.01458EPSS

Exploits5References4

Mageia•added 2015/11/10 9:26 p.m.•16 views

Updated sudo packages fix security vulnerability

7.2CVSS7.3AI score0.01458EPSS

Exploits5References3

Cent OS•added 2015/11/10 1:43 p.m.•57 views

libipa_hbac, libsss_idmap, libsss_nss_idmap, libsss_simpleifp, python, sssd security update

CentOS Errata and Security Advisory CESA-2015:2019 Updated sssd packages that fix one security issue and several bugs are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Low security impact. A Common Vulnerability Scoring System CVSS base...

6.8CVSS7AI score0.03666EPSS

Exploits0References7

OpenVAS•added 2015/11/09 12:0 a.m.•16 views

Fedora Update for sudo FEDORA-2015-6

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.2CVSS6.5AI score0.01458EPSS

Exploits5References2

Fedora•added 2015/11/08 9:50 a.m.•20 views

[SECURITY] Fedora 22 Update: sudo-1.8.15-1.fc22

Sudo superuser do allows a system administrator to give certain users or groups of users the ability to run some or all commands as root while logging all commands and arguments. Sudo operates on a per-command basis. It is not a replacement for the shell. Features include: the ability to restrict...

7.2CVSS2.2AI score0.01458EPSS

Exploits5

Fedora•added 2015/11/08 6:54 a.m.•25 views

[SECURITY] Fedora 23 Update: sudo-1.8.15-1.fc23

7.2CVSS2.2AI score0.01458EPSS

Exploits5

Exploit DB•added 2015/11/06 12:0 a.m.•40 views

SolarWinds Log and Event Manager/Trigeo SIM 6.1.0 - Remote Command Execution

Requirements: Python 2.7 netcat Tested on: Ubuntu 14.04 LTS Vulnerable Appliance Version: 6.1.0 Download: http://downloads.solarwinds.com/solarwinds/Release/LEM/SolarWinds-LEM-v6.1.0-Evaluation-VMware.exe Instructions: The exploitlem.py script will need to be run sudo since it uses sockets which...

7.4AI score

Exploits0

Tenable Nessus•added 2015/11/05 12:0 a.m.•24 views

openSUSE Security Update : sudo (openSUSE-2015-703)

sudo was updated to fix one security issue. This security issue was fixed : - CVE-2014-9680: Unsafe handling of TZ environment variable bsc917806. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Upda...

3.3CVSS5.4AI score0.0047EPSS

Exploits1References2

Tenable Nessus•added 2015/11/03 12:0 a.m.•25 views

GLSA-201511-01 : MirBSD Korn Shell: Arbitrary code execution

The remote host is affected by the vulnerability described in GLSA-201511-01 MirBSD Korn Shell: Arbitrary code execution Improper sanitation of environment import allows for appending of values to passed parameters. Impact : An attacker who already had access to the environment could so append...

5.7AI score

Exploits0References2

RedhatCVE•added 2015/10/30 10:28 a.m.•17 views

CVE-2005-1119

Sudo VISudo 1.6.8 and earlier allows local users to corrupt arbitrary files via a symlink attack on temporary files...

2.1CVSS7AI score0.00346EPSS

Exploits0References2

RedhatCVE•added 2015/10/30 10:8 a.m.•17 views

CVE-2005-2959

Incomplete blacklist vulnerability in sudo 1.6.8 and earlier allows local users to gain privileges via the 1 SHELLOPTS and 2 PS4 environment variables before executing a bash script on behalf of another user, which are not cleared even though other variables are...

4.6CVSS7.2AI score0.00624EPSS

Exploits2References2

Exploit DB•added 2015/10/27 12:0 a.m.•54 views

Apple Mac OSX 10.9.5/10.10.5 - 'rsh/libmalloc' Local Privilege Escalation (Metasploit)

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit4 'Mac OS X 10.9.5 / 10.10.5 - rsh/libmalloc Privilege Escalation', 'Description' = %q This module writes to the sudoers file without...

7.2CVSS7.4AI score0.05088EPSS

Exploits14

Tenable Nessus•added 2015/10/16 12:0 a.m.•95 views

Mac OS X < 10.10.5 Multiple Vulnerabilities

Binary data 8981.prm...

9.8CVSS7.1AI score0.74483EPSS

Exploits52References133

OpenVAS•added 2015/10/13 12:0 a.m.•15 views

SUSE: Security Advisory for sudo (SUSE-SU-2014:0475-1)

6.6CVSS5.1AI score0.00338EPSS

Exploits2References1

OpenVAS•added 2015/10/08 12:0 a.m.•20 views