Lucene search
Ubuntu.comUB:CVE-2013-2027HistoryFeb 13, 2015 - 12:00 a.m.
CVE-2013-2027
2015-02-1300:00:00
ubuntu.com
ubuntu.com
11
4.6 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
0.0004 Low
EPSS
Percentile
5.3%
Jython 2.2.1 uses the current umask to set the privileges of the class
cache files, which allows local users to bypass intended access
restrictions via unspecified vectors.
Bugs
Related
cve
cve
CVE-2013-2027
2015-02-13 15:59:00
debiancve
debiancve
CVE-2013-2027
2015-02-13 15:59:00
nessus
nessus
Mandriva Linux Security Advisory : jython (MDVSA-2015:158)
2015-03-30 00:00:00
openSUSE Security Update : jython (openSUSE-2015-139)
2015-02-13 00:00:00
Oracle WebLogic Server Multiple Vulnerabilities (July 2017 CPU)
2017-07-19 00:00:00
ibm
ibm
osv
osv
Jython Improper Access Restrictions vulnerability
2022-05-14 02:05:10
securityvulns
securityvulns
Jython weak permissions
2015-04-19 00:00:00
[ MDVSA-2015:158 ] jython
2015-04-19 00:00:00
prion
prion
Design/Logic Flaw
2015-02-13 15:59:00
openvas
openvas
Mageia: Security Advisory (MGASA-2015-0096)
2022-01-28 00:00:00
Oracle WebLogic Server Multiple Vulnerabilities (cpujul2017-3236622)
2017-07-19 00:00:00
github
github
Jython Improper Access Restrictions vulnerability
2022-05-14 02:05:10
mageia
mageia
Updated jython packages fix CVE-2013-2027
2015-03-06 21:08:57
oracle
oracle
Oracle Critical Patch Update Advisory - July 2017
2018-03-20 00:00:00
4.6 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
0.0004 Low
EPSS
Percentile
5.3%
Related for UB:CVE-2013-2027