CVE-2014-5443

Опубликовано: 19 мар. 2018

Источник: nvd

CVSS3: 7.8

CVSS2: 4.6

EPSS Низкий

Описание

Seafile Server before 3.1.2 and Server Professional Edition before 3.1.0 allow local users to gain privileges via vectors related to ccnet handling user accounts.

Ссылки

http://www.openwall.com/lists/oss-security/2014/08/24/3
Mailing List
http://www.securityfocus.com/bid/69360
Third Party Advisory
VDB Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/95458
Third Party Advisory
VDB Entry
https://manual.seafile.com/changelog/changelog-for-seafile-professional-server.html
Release Notes
https://manual.seafile.com/changelog/server-changelog.html
Release Notes
http://www.openwall.com/lists/oss-security/2014/08/24/3
Mailing List
http://www.securityfocus.com/bid/69360
Third Party Advisory
VDB Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/95458
Third Party Advisory
VDB Entry
https://manual.seafile.com/changelog/changelog-for-seafile-professional-server.html
Release Notes
https://manual.seafile.com/changelog/server-changelog.html
Release Notes

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:seafile:seafile_server:*:*:*:*:*:*:*:*

Версия до 3.1.2 (исключая)

Конфигурация 2

cpe:2.3:a:seafile:seafile_server:*:*:*:*:professional:*:*:*

Версия до 3.1.0 (исключая)

EPSS

Процентиль: 19%

0.0006

Низкий

7.8 High

CVSS3

4.6 Medium

CVSS2

Дефекты

CWE-264

Связанные уязвимости

CVE-2014-5443

CVSS3: 7.8

debian

почти 8 лет назад

Seafile Server before 3.1.2 and Server Professional Edition before 3.1 ...

GHSA-j86j-6mp8-v73v

CVSS3: 7.8

github

больше 3 лет назад

Seafile Server before 3.1.2 and Server Professional Edition before 3.1.0 allow local users to gain privileges via vectors related to ccnet handling user accounts.

EPSS

Процентиль: 19%

0.0006

Низкий

7.8 High

CVSS3

4.6 Medium

CVSS2

Дефекты

CWE-264