Lucene search
Veracode Vulnerability DatabaseVERACODE:21127HistoryAug 08, 2019 - 12:07 a.m.
Incorrect Permission Check
2019-08-0800:07:53
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
5
0.001 Low
EPSS
Percentile
30.8%
opensc is vulnerable to incorrect permission check. It allows reading and modify arbitrary files by privileged users without asking for password when no authentication agent is running.
| CPE | Name | Operator | Version |
|---|---|---|---|
| gvfs | eq | 1.30.4__5.el7 | |
| gvfs | eq | 1.36.2__1.el7 |
References
access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/7.7_release_notes/index
access.redhat.com/errata/RHSA-2019:1517
access.redhat.com/errata/RHSA-2019:2145
access.redhat.com/security/updates/classification/#moderate
bugzilla.redhat.com/show_bug.cgi?id=1619719
bugzilla.redhat.com/show_bug.cgi?id=1632960
bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3827
gitlab.gnome.org/GNOME/gvfs/merge_requests/31
Related
nessus
nessus
NewStart CGSL CORE 5.04 / MAIN 5.04 : gvfs Vulnerability (NS-SA-2019-0224)
2019-12-02 00:00:00
Oracle Linux 7 : gvfs (ELSA-2019-2145)
2023-09-07 00:00:00
EulerOS 2.0 SP5 : gvfs (EulerOS-SA-2019-2156)
2019-11-12 00:00:00
openvas
openvas
openSUSE: Security Advisory for gvfs (openSUSE-SU-2019:0261-1)
2019-02-28 00:00:00
Ubuntu: Security Advisory (USN-3888-1)
2019-02-13 00:00:00
Mageia: Security Advisory (MGASA-2019-0080)
2022-01-28 00:00:00
debiancve
debiancve
CVE-2019-3827
2019-03-25 18:29:00
redhatcve
redhatcve
CVE-2019-3827
2019-10-10 04:08:08
oraclelinux
oraclelinux
gvfs security update
2019-07-30 00:00:00
gvfs security and bug fix update
2019-08-13 00:00:00
GNOME security, bug fix, and enhancement update
2019-11-14 00:00:00
prion
prion
Design/Logic Flaw
2019-03-25 18:29:00
centos
centos
gvfs security update
2019-08-30 02:58:14
nvd
nvd
CVE-2019-3827
2019-03-25 18:29:00
ubuntu
ubuntu
GVfs vulnerability
2019-02-12 00:00:00
redhat
redhat
(RHSA-2019:1517) Moderate: gvfs security update
2019-06-18 16:34:27
(RHSA-2019:2145) Moderate: gvfs security and bug fix update
2019-08-06 08:06:27
mageia
mageia
Updated gvfs packages fix security vulnerability
2019-02-14 11:38:16
osv
osv
CVE-2019-3827
2019-03-25 18:29:00
ubuntucve
ubuntucve
CVE-2019-3827
2019-02-11 00:00:00
cvelist
cvelist
CVE-2019-3827
2019-03-25 17:47:35
suse
suse
Security update for gvfs (important)
2019-02-27 00:00:00
cve
cve
CVE-2019-3827
2019-03-25 18:29:00