Automatic Bug Reporting Tool Security Vulnerabilities and Issues — Automatic Bug Reporting Tool CVE List

Lucene search

RedhatAutomatic Bug Reporting Tool

3 matches found

CVE•added 2017/06/26 3:29 p.m.•92 views

CVE-2015-3315

Automatic Bug Reporting Tool (ABRT) allows local users to read, change the ownership of, or have other unspecified impact on arbitrary files via a symlink attack on (1) /var/tmp/abrt//maps, (2) /tmp/jvm- /hs_error.log, (3) /proc/*/exe, (4) /etc/os-release in a chroot, or (5) an unspecified root dir...

7.8CVSS5.6AI score0.04833EPSS

CVE•added 2017/06/26 3:29 p.m.•67 views

CVE-2015-1870

The event scripts in Automatic Bug Reporting Tool (ABRT) uses world-readable permission on a copy of sosreport file in problem directories, which allows local users to obtain sensitive information from /var/log/messages via unspecified vectors.

5.5CVSS5.1AI score0.00107EPSS

CVE•added 2017/06/26 3:29 p.m.•49 views

CVE-2015-3142

The kernel-invoked coredump processor in Automatic Bug Reporting Tool (ABRT) does not properly check the ownership of files before writing core dumps to them, which allows local users to obtain sensitive information by leveraging write permissions to the working directory of a crashed application.

4.7CVSS5.3AI score0.00111EPSS