exploitDog

GHSA-mvr7-mrp6-366f

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

Описание

openCryptoki before 2.4.1, when using spinlocks, allows local users to create or set world-writable permissions on arbitrary files via a symlink attack on the (1) .pkapi_xpk or (2) .pkcs11spinloc file in /tmp.

openCryptoki before 2.4.1, when using spinlocks, allows local users to create or set world-writable permissions on arbitrary files via a symlink attack on the (1) .pkapi_xpk or (2) .pkcs11spinloc file in /tmp.

Ссылки

EPSS

Процентиль: 70%

0.00655

Низкий

CVE ID

Связанные уязвимости

CVE-2012-4454

ubuntu

больше 13 лет назад

openCryptoki before 2.4.1, when using spinlocks, allows local users to create or set world-writable permissions on arbitrary files via a symlink attack on the (1) .pkapi_xpk or (2) .pkcs11spinloc file in /tmp.

CVE-2012-4454

redhat

больше 13 лет назад

openCryptoki before 2.4.1, when using spinlocks, allows local users to create or set world-writable permissions on arbitrary files via a symlink attack on the (1) .pkapi_xpk or (2) .pkcs11spinloc file in /tmp.

CVE-2012-4454

nvd

больше 13 лет назад

openCryptoki before 2.4.1, when using spinlocks, allows local users to create or set world-writable permissions on arbitrary files via a symlink attack on the (1) .pkapi_xpk or (2) .pkcs11spinloc file in /tmp.

CVE-2012-4454

debian

больше 13 лет назад

openCryptoki before 2.4.1, when using spinlocks, allows local users to ...

EPSS

Процентиль: 70%

0.00655

Низкий

CVE ID