Lucene search
K

2832 matches found

OSV
OSV
added 2020/05/07 1:15 p.m.7 views

CVE-2020-5895

On NGINX Controller versions 3.1.0-3.3.0, AVRD uses world-readable and world-writable permissions on its socket, which allows processes or users on the local system to write arbitrary data into the socket. A local system attacker can make AVRD segmentation fault SIGSEGV by writing malformed...

7.8CVSS5.9AI score0.00292EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2020/04/28 8:56 p.m.3 views

targetcli: world writable /var/run/targetclid.sock allows unprivileged user to execute commands

A flaw was found in Linux, where the socket used by targetclid was world-writable. If a system enables the targetclid socket, a local attacker can use this flaw to modify the iSCSI configuration and escalate their privileges to root...

7.8CVSS5.7AI score0.00348EPSS
Exploits0References5
NVD
NVD
added 2020/04/22 10:15 p.m.14 views

CVE-2020-8831

Apport creates a world writable lock file with root ownership in the world writable /var/lock/apport directory. If the apport/ directory does not exist this is not uncommon as /var/lock is a tmpfs, it will create the directory, otherwise it will simply continue execution using the existing...

6.5CVSS6.5AI score0.00656EPSS
Exploits1References3
OSV
OSV
added 2020/04/22 10:15 p.m.3 views

CVE-2020-8831

Apport creates a world writable lock file with root ownership in the world writable /var/lock/apport directory. If the apport/ directory does not exist this is not uncommon as /var/lock is a tmpfs, it will create the directory, otherwise it will simply continue execution using the existing...

5.5CVSS6.1AI score0.00656EPSS
Exploits1References3
Prion
Prion
added 2020/04/22 10:15 p.m.13 views

Design/Logic Flaw

Apport creates a world writable lock file with root ownership in the world writable /var/lock/apport directory. If the apport/ directory does not exist this is not uncommon as /var/lock is a tmpfs, it will create the directory, otherwise it will simply continue execution using the existing...

2.1CVSS5.6AI score0.00656EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2020/04/22 9:15 p.m.25 views

CVE-2020-8831 World writable root owned lock file created in user controllable location

Apport creates a world writable lock file with root ownership in the world writable /var/lock/apport directory. If the apport/ directory does not exist this is not uncommon as /var/lock is a tmpfs, it will create the directory, otherwise it will simply continue execution using the existing...

6.5CVSS6.5AI score0.00656EPSS
Exploits1References3
CVE
CVE
added 2020/04/22 9:15 p.m.112 views

CVE-2020-8831

CVE-2020-8831 : Apport creates a world-writable lock file with root ownership in /var/lock/apport. If the directory is missing (common on tmpfs), Apport creates it; otherwise it uses the existing directory. This enables a symlink attack by placing a link at /var/lock/apport to redirect Apport’s l...

6.5CVSS5.8AI score0.00656EPSS
Exploits1References3Affected Software1
Packet Storm
Packet Storm
added 2020/04/17 12:0 a.m.124 views

Easy MPEG To DVD Burner 1.7.11 Buffer Overflow

Exploit Title: Easy MPEG to DVD Burner 1.7.11 - Buffer Overflow SEH + DEP Date: 2020-04-15 Exploit Author: Bailey Belisario Tested On: Windows 7 Ultimate x64 Software Link: https://www.exploit-db.com/apps/32dc10d6e60ceb4d6e57052b6de3a0ba-easympegtodvd.exe Version: 1.7.11 Exploit Length: 1015 Byte...

0.4AI score
Exploits0
UbuntuCve
UbuntuCve
added 2020/04/15 2:15 p.m.28 views

CVE-2020-10699

A flaw was found in Linux, in targetcli-fb versions 2.1.50 and 2.1.51 where the socket used by targetclid was world-writable. If a system enables the targetclid socket, a local attacker can use this flaw to modify the iSCSI configuration and escalate their privileges to root...

7.8CVSS7AI score0.00348EPSS
Exploits0References3
OSV
OSV
added 2020/04/15 2:15 p.m.0 views

UBUNTU-CVE-2020-10699

A flaw was found in Linux, in targetcli-fb versions 2.1.50 and 2.1.51 where the socket used by targetclid was world-writable. If a system enables the targetclid socket, a local attacker can use this flaw to modify the iSCSI configuration and escalate their privileges to root...

7.8CVSS7AI score0.00348EPSS
Exploits0References4
AlpineLinux
AlpineLinux
added 2020/04/15 12:0 a.m.43 views

CVE-2020-10699

A flaw was found in Linux, in targetcli-fb versions 2.1.50 and 2.1.51 where the socket used by targetclid was world-writable. If a system enables the targetclid socket, a local attacker can use this flaw to modify the iSCSI configuration and escalate their privileges to root...

7.8CVSS7.5AI score0.00348EPSS
Exploits0
Veracode
Veracode
added 2020/04/10 1:2 a.m.28 views

Privilege Escalation

kernel is vulnerable to privilege escalation. /sys/kernel/debug/acpi/custommethod had world-writable permissions, which could allow a local, unprivileged user to escalate their privileges. Note: The debugfs file system must be mounted locally to exploit this issue. It is not mounted by default...

6.9CVSS3.9AI score0.02203EPSS
Exploits6References17Affected Software1
Veracode
Veracode
added 2020/04/10 12:51 a.m.50 views

Privilege Escalation

kernel is vulnerable to privilege escalation. A buffer overflow flaw was found in the ecryptfsuidhash function in the Linux kernel eCryptfs implementation. On systems that have the eCryptfs netlink transport Red Hat Enterprise Linux 5 does or where the "/dev/ecryptfs" file has world writable...

7.8CVSS2AI score0.00434EPSS
Exploits1References18Affected Software1
Veracode
Veracode
added 2020/04/10 12:39 a.m.39 views

Privilege Escalation

kernel is vulnerable to privilege escalation. The vulnerability exists as permission issues were found in the megaraidsas driver. The "dbglvl" and "pollmodeio" files on the sysfs file system "/sys/" had world-writable permissions. This could allow local, unprivileged users to change the behavior ...

7.1CVSS4.7AI score0.00444EPSS
Exploits1References26Affected Software2
Tenable Nessus
Tenable Nessus
added 2020/04/10 12:0 a.m.114 views

CentOS 7 : bash (RHSA-2020:1113)

The remote CentOS Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:1113 advisory. - rbash in Bash before 4.4-beta2 did not prevent the shell user from modifying BASHCMDS, thus allowing the user to execute any command with the permissions of t...

7.8CVSS7.1AI score0.00415EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2020/04/02 7:1 a.m.34 views

CVE-2020-10699

A flaw was found in Linux, where the socket used by targetclid was world-writable. If a system enables the targetclid socket, a local attacker can use this flaw to modify the iSCSI configuration and escalate their privileges to root. Mitigation - Do not enable targetclid, this would prevent the...

7.8CVSS1.7AI score0.00348EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2020/04/02 12:0 a.m.23 views

CVE-2020-8831

Apport creates a world writable lock file with root ownership in the world writable /var/lock/apport directory. If the apport/ directory does not exist this is not uncommon as /var/lock is a tmpfs, it will create the directory, otherwise it will simply continue execution using the existing...

6.5CVSS6.3AI score0.00656EPSS
Exploits1References3
OSV
OSV
added 2020/04/02 12:0 a.m.1 views

UBUNTU-CVE-2020-8831

Apport creates a world writable lock file with root ownership in the world writable /var/lock/apport directory. If the apport/ directory does not exist this is not uncommon as /var/lock is a tmpfs, it will create the directory, otherwise it will simply continue execution using the existing...

6.5CVSS6.2AI score0.00656EPSS
Exploits1References4
Prion
Prion
added 2020/04/01 10:15 p.m.17 views

Design/Logic Flaw

Zoom Client for Meetings through 4.6.8 on macOS copies runwithroot to a user-writable temporary directory during installation, which allows a local process with the user's privileges to obtain root access by replacing runwithroot...

7.2CVSS7.2AI score0.00418EPSS
Exploits1References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2020/04/01 12:0 a.m.88 views

RHEL 7 : bash (RHSA-2020:1113)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:1113 advisory. The bash packages provide Bash Bourne-again shell, which is the default shell for Red Hat Enterprise Linux. Security Fixes: bash: BASHCMD is writable...

7.8CVSS7AI score0.00415EPSS
Exploits0References6
Rows per page
Query Builder