exploitDog

CVE-2011-3177

Опубликовано: 08 сент. 2017

Источник: nvd

CVSS3: 7.8

CVSS2: 2.1

EPSS Низкий

Описание

The YaST2 network created files with world readable permissions which could have allowed local users to read sensitive material out of network configuration files, like passwords for wireless networks.

Ссылки

https://bugzilla.suse.com/show_bug.cgi?id=713661
Issue Tracking
Third Party Advisory
https://github.com/yast/yast-core/commit/7fe2e3df308b8b6a901cb2cfd60f398df53219de
Third Party Advisory
https://bugzilla.suse.com/show_bug.cgi?id=713661
Issue Tracking
Third Party Advisory
https://github.com/yast/yast-core/commit/7fe2e3df308b8b6a901cb2cfd60f398df53219de
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:yast:yast2:-:*:*:*:*:*:*:*

EPSS

Процентиль: 10%

0.00034

Низкий

7.8 High

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-200

Связанные уязвимости

GHSA-x4m3-94qr-f6c3

CVSS3: 7.8

github

больше 3 лет назад

The YaST2 network created files with world readable permissions which could have allowed local users to read sensitive material out of network configuration files, like passwords for wireless networks.

EPSS

Процентиль: 10%

0.00034

Низкий

7.8 High

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-200