Описание
The Crowbar Ohai plugin (chef/cookbooks/ohai/files/default/plugins/crowbar.rb) in the Deployer Barclamp in Crowbar, possibly 1.4 and earlier, allows local users to execute arbitrary shell commands via vectors related to "insecure handling of tmp files" and predictable file names.
Ссылки
- Vendor Advisory
- ExploitPatch
- ExploitPatch
- Vendor Advisory
- ExploitPatch
- ExploitPatch
Уязвимые конфигурации
Конфигурация 1Версия до 1.4 (включая)
cpe:2.3:a:dell:crowbar:*:*:*:*:*:*:*:*
EPSS
Процентиль: 47%
0.00239
Низкий
4.6 Medium
CVSS2
Дефекты
CWE-264
Связанные уязвимости
github
больше 3 лет назад
The Crowbar Ohai plugin (chef/cookbooks/ohai/files/default/plugins/crowbar.rb) in the Deployer Barclamp in Crowbar, possibly 1.4 and earlier, allows local users to execute arbitrary shell commands via vectors related to "insecure handling of tmp files" and predictable file names.
EPSS
Процентиль: 47%
0.00239
Низкий
4.6 Medium
CVSS2
Дефекты
CWE-264