Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2012-6088

Опубликовано: 18 янв. 2013
Источник: nvd
CVSS2: 4.3
EPSS Низкий

Описание

The rpmpkgRead function in lib/package.c in RPM 4.10.x before 4.10.2 does not return an error code in certain situations involving an "unparseable signature," which allows remote attackers to bypass RPM signature checks via a crafted package.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:rpm:rpm:4.10.0:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.10.1:*:*:*:*:*:*:*

EPSS

Процентиль: 42%
0.00198
Низкий

4.3 Medium

CVSS2

Дефекты

CWE-255

Связанные уязвимости

ubuntu логотип

CVE-2012-6088

ubuntu
около 13 лет назад

The rpmpkgRead function in lib/package.c in RPM 4.10.x before 4.10.2 does not return an error code in certain situations involving an "unparseable signature," which allows remote attackers to bypass RPM signature checks via a crafted package.

redhat логотип

CVE-2012-6088

CVSS3: 6.2
redhat
почти 3 года назад

The rpmpkgRead function in lib/package.c in RPM 4.10.x before 4.10.2 does not return an error code in certain situations involving an "unparseable signature," which allows remote attackers to bypass RPM signature checks via a crafted package.

debian логотип

CVE-2012-6088

debian
около 13 лет назад

The rpmpkgRead function in lib/package.c in RPM 4.10.x before 4.10.2 d ...

github логотип

GHSA-2frm-49v8-4jhm

github
больше 3 лет назад

The rpmpkgRead function in lib/package.c in RPM 4.10.x before 4.10.2 does not return an error code in certain situations involving an "unparseable signature," which allows remote attackers to bypass RPM signature checks via a crafted package.

EPSS

Процентиль: 42%
0.00198
Низкий

4.3 Medium

CVSS2

Дефекты

CWE-255