Описание
HP NonStop Safeguard Security Software G, H06.03 through H06.28.01, and J06.03 through J06.17.01 does not properly evaluate the DISKFILE-PATTERN ACL of a program object file, which allows remote authenticated users to bypass intended restrictions on program access via vectors related to process-creation time.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до g06.29 (включая)Версия до h06.28.01 (включая)Версия до j06.17.01 (включая)
Одно из
cpe:2.3:a:hp:nonstop_safeguard_security:*:*:*:*:*:*:*:*
cpe:2.3:a:hp:nonstop_safeguard_security:*:*:*:*:*:*:*:*
cpe:2.3:a:hp:nonstop_safeguard_security:*:*:*:*:*:*:*:*
EPSS
Процентиль: 34%
0.00139
Низкий
4 Medium
CVSS2
Дефекты
CWE-264
Связанные уязвимости
github
больше 3 лет назад
HP NonStop Safeguard Security Software G, H06.03 through H06.28.01, and J06.03 through J06.17.01 does not properly evaluate the DISKFILE-PATTERN ACL of a program object file, which allows remote authenticated users to bypass intended restrictions on program access via vectors related to process-creation time.
EPSS
Процентиль: 34%
0.00139
Низкий
4 Medium
CVSS2
Дефекты
CWE-264