CVE-2013-4392

Опубликовано: 28 окт. 2013

Источник: nvd

CVSS3: 5

CVSS2: 3.3

EPSS Низкий

Описание

systemd, when updating file permissions, allows local users to change the permissions and SELinux security contexts for arbitrary files via a symlink attack on unspecified files.

Ссылки

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=725357
Issue Tracking
Third Party Advisory
http://www.openwall.com/lists/oss-security/2013/10/01/9
Mailing List
Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=859060
Issue Tracking
Third Party Advisory
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=725357
Issue Tracking
Third Party Advisory
http://www.openwall.com/lists/oss-security/2013/10/01/9
Mailing List
Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=859060
Issue Tracking
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:systemd_project:systemd:*:*:*:*:*:*:*:*

Версия до 239 (исключая)

EPSS

Процентиль: 13%

0.00042

Низкий

5 Medium

CVSS3

3.3 Low

CVSS2

Дефекты

CWE-59

Связанные уязвимости

CVE-2013-4392

CVSS3: 5

ubuntu

больше 12 лет назад

systemd, when updating file permissions, allows local users to change the permissions and SELinux security contexts for arbitrary files via a symlink attack on unspecified files.

CVE-2013-4392

redhat

больше 12 лет назад

systemd, when updating file permissions, allows local users to change the permissions and SELinux security contexts for arbitrary files via a symlink attack on unspecified files.

CVE-2013-4392

CVSS3: 5

debian

больше 12 лет назад

systemd, when updating file permissions, allows local users to change ...

GHSA-r4xg-5wrj-c7g3

CVSS3: 5

github

больше 3 лет назад

systemd, when updating file permissions, allows local users to change the permissions and SELinux security contexts for arbitrary files via a symlink attack on unspecified files.

EPSS

Процентиль: 13%

0.00042

Низкий

5 Medium

CVSS3

3.3 Low

CVSS2

Дефекты

CWE-59