CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Tenable Nessus•added 2018/04/23 12:0 a.m.•16 views

GLSA-201804-18 : tenshi: Privilege escalation

The remote host is affected by the vulnerability described in GLSA-201804-18 tenshi: Privilege escalation It was discovered that the tenshi ebuild creates a tenshi.pid file after dropping privileges to a non-root account. Impact : A local attacker could escalate privileges to root or kill arbitra...

7.8CVSS7.3AI score0.0109EPSS

OpenVAS•added 2018/02/06 12:0 a.m.•16 views

Debian: Security Advisory (DLA-1069-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.6AI score0.0109EPSS

Tenable Nessus•added 2017/08/28 12:0 a.m.•21 views

Debian DLA-1069-1 : tenshi security update

Tenshi creates a tenshi.pid file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-root account for tenshi.pid modification before a root script executes a 'kill cat /pathname/tenshi.pid' command. For Debian...

7.8CVSS7.2AI score0.0109EPSS

Debian•added 2017/08/27 6:35 p.m.•18 views

[SECURITY] [DLA 1069-1] tenshi security update

Package : tenshi Version : 0.13-2+deb7u1 CVE ID : CVE-2017-11746 Debian Bug : 871321 Tenshi creates a tenshi.pid file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-root account for tenshi.pid modificatio...

7.8CVSS7.8AI score0.0109EPSS

Exploits0

OSV•added 2017/08/27 12:0 a.m.•14 views

DLA-1069-1 tenshi - security update

Bulletin has no description...

CNVD•added 2017/08/02 12:0 a.m.•1 views

Exploits0

Tenshi Elevation of Privilege Vulnerability

Tenshi is a log monitoring tool with the ability to view one or more logs. A security vulnerability exists in Tenshi version 0.15. A local attacker can exploit the vulnerability to terminate arbitrary processes...

7.8CVSS7.3AI score0.0109EPSS

Exploits0References1

OSV•added 2017/07/30 4:29 p.m.•5 views

CVE-2017-11746

Tenshi 0.15 creates a tenshi.pid file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-root account for tenshi.pid modification before a root script executes a "kill cat /pathname/tenshi.pid" command...

7.5CVSS7.4AI score

Prion•added 2017/07/30 4:29 p.m.•11 views

Command injection

Exploits0References2Affected Software1

NVD•added 2017/07/30 4:29 p.m.•15 views

CVE-2017-11746

UbuntuCve•added 2017/07/30 4:29 p.m.•21 views

CVE-2017-11746

7.8CVSS7.2AI score0.0109EPSS

OSV•added 2017/07/30 4:29 p.m.•1 views

UBUNTU-CVE-2017-11746

7.5CVSS7.2AI score0.0109EPSS

OSV•added 2017/07/30 4:29 p.m.•1 views

DEBIAN-CVE-2017-11746

7.5CVSS7.3AI score0.0109EPSS

Exploits0References1

Cvelist•added 2017/07/30 4:0 p.m.•13 views

CVE-2017-11746

7.4AI score0.0109EPSS

CVE•added 2017/07/30 4:0 p.m.•54 views

CVE-2017-11746

CVE-2017-11746 affects Tenshi 0.15. The issue: tenshi.pid is created after dropping privileges to a non-root account, permitting a local attacker to kill arbitrary processes by modifying tenshi.pid before a root script issues a kill command. Impact: local privilege/escalation and process terminat...

7.8CVSS7.3AI score0.0109EPSS

Exploits0References2Affected Software1

Debian CVE•added 2017/07/30 4:0 p.m.•14 views

CVE-2017-11746