CVE-2014-2079

Опубликовано: 16 июл. 2018

Источник: nvd

CVSS3: 5.5

CVSS2: 2.1

EPSS Низкий

Описание

X File Explorer (aka xfe) might allow local users to bypass intended access restrictions and gain access to arbitrary files by leveraging failure to use directory masks when creating files on Samba and NFS shares.

Ссылки

http://www.openwall.com/lists/oss-security/2014/02/24/5
Mailing List
Third Party Advisory
http://www.securityfocus.com/bid/65748
Third Party Advisory
VDB Entry
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=739536
Mailing List
Patch
Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=1069066
Issue Tracking
Patch
Third Party Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/91519
Third Party Advisory
VDB Entry
http://www.openwall.com/lists/oss-security/2014/02/24/5
Mailing List
Third Party Advisory
http://www.securityfocus.com/bid/65748
Third Party Advisory
VDB Entry
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=739536
Mailing List
Patch
Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=1069066
Issue Tracking
Patch
Third Party Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/91519
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:x_file_explorer_project:x_file_explorer:1.32.5:*:*:*:*:*:*:*

Конфигурация 2

Одно из

cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*

cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*

EPSS

Процентиль: 21%

0.00068

Низкий

5.5 Medium

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-264

Связанные уязвимости

CVE-2014-2079

CVSS3: 5.5

ubuntu

больше 7 лет назад

CVE-2014-2079

CVSS3: 5.5

debian

больше 7 лет назад

X File Explorer (aka xfe) might allow local users to bypass intended a ...

GHSA-rgg2-xp4r-28h4

CVSS3: 5.5

github

больше 3 лет назад

EPSS

Процентиль: 21%

0.00068

Низкий

5.5 Medium

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-264