CVE-2013-7458

Опубликовано: 10 авг. 2016

Источник: debian

EPSS Низкий

Описание

linenoise, as used in Redis before 3.2.3, uses world-readable permissions for .rediscli_history, which allows local users to obtain sensitive information by reading the file.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
redis	fixed	2:3.2.1-4		package

Примечания

https://www.openwall.com/lists/oss-security/2016/07/28/1

EPSS

Процентиль: 9%

0.00031

Низкий

Связанные уязвимости

CVE-2013-7458

CVSS3: 3.3

ubuntu

больше 9 лет назад

linenoise, as used in Redis before 3.2.3, uses world-readable permissions for .rediscli_history, which allows local users to obtain sensitive information by reading the file.

CVE-2013-7458

CVSS3: 2.9

redhat

больше 9 лет назад

linenoise, as used in Redis before 3.2.3, uses world-readable permissions for .rediscli_history, which allows local users to obtain sensitive information by reading the file.

CVE-2013-7458

CVSS3: 3.3

nvd

больше 9 лет назад

linenoise, as used in Redis before 3.2.3, uses world-readable permissions for .rediscli_history, which allows local users to obtain sensitive information by reading the file.

GHSA-gfx7-7mf7-vcxx

CVSS3: 3.3

github

больше 3 лет назад

linenoise, as used in Redis before 3.2.3, uses world-readable permissions for .rediscli_history, which allows local users to obtain sensitive information by reading the file.

SUSE-OU-2020:3291-1

suse-cvrf

около 5 лет назад

Optional update for python-redis and redis

EPSS

Процентиль: 9%

0.00031

Низкий