CVE-2014-1421

Опубликовано: 25 нояб. 2014

Источник: nvd

CVSS2: 7.2

EPSS Низкий

Описание

mountall 1.54, as used in Ubuntu 14.10, does not properly handle the umask when using the mount utility, which allows local users to bypass intended access restrictions via unspecified vectors.

Ссылки

http://www.ubuntu.com/usn/USN-2411-1
Vendor Advisory
http://www.ubuntu.com/usn/USN-2411-1
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:canonical:ubuntu_linux:14.10:*:*:*:*:*:*:*

EPSS

Процентиль: 2%

0.00014

Низкий

7.2 High

CVSS2

Дефекты

CWE-264

Связанные уязвимости

CVE-2014-1421

ubuntu

около 11 лет назад

mountall 1.54, as used in Ubuntu 14.10, does not properly handle the umask when using the mount utility, which allows local users to bypass intended access restrictions via unspecified vectors.

CVE-2014-1421

debian

около 11 лет назад

mountall 1.54, as used in Ubuntu 14.10, does not properly handle the u ...

GHSA-284v-wmgp-rgxg

github

больше 3 лет назад

mountall 1.54, as used in Ubuntu 14.10, does not properly handle the umask when using the mount utility, which allows local users to bypass intended access restrictions via unspecified vectors.

EPSS

Процентиль: 2%

0.00014

Низкий

7.2 High

CVSS2

Дефекты

CWE-264