CVE-2014-8119

Опубликовано: 29 дек. 2017

Источник: nvd

CVSS3: 7.5

CVSS2: 5

EPSS Низкий

Описание

The find_ifcfg_path function in netcf before 0.2.7 might allow attackers to cause a denial of service (application crash) via vectors involving augeas path expressions.

Ссылки

http://lists.fedoraproject.org/pipermail/package-announce/2015-April/156571.html
Issue Tracking
Third Party Advisory
http://lists.fedoraproject.org/pipermail/package-announce/2015-May/157508.html
Issue Tracking
Third Party Advisory
http://lists.fedoraproject.org/pipermail/package-announce/2015-May/157713.html
Issue Tracking
Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2015-2248.html
Issue Tracking
Third Party Advisory
http://www.securityfocus.com/bid/78046
Third Party Advisory
VDB Entry
https://bugzilla.redhat.com/show_bug.cgi?id=1172176
Issue Tracking
Third Party Advisory
https://pagure.io/netcf/blob/050b05c880a6b343baf86780d94764b1aafece37/f/NEWS
Issue Tracking
Release Notes
Third Party Advisory
http://lists.fedoraproject.org/pipermail/package-announce/2015-April/156571.html
Issue Tracking
Third Party Advisory
http://lists.fedoraproject.org/pipermail/package-announce/2015-May/157508.html
Issue Tracking
Third Party Advisory
http://lists.fedoraproject.org/pipermail/package-announce/2015-May/157713.html
Issue Tracking
Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2015-2248.html
Issue Tracking
Third Party Advisory
http://www.securityfocus.com/bid/78046
Third Party Advisory
VDB Entry
https://bugzilla.redhat.com/show_bug.cgi?id=1172176
Issue Tracking
Third Party Advisory
https://pagure.io/netcf/blob/050b05c880a6b343baf86780d94764b1aafece37/f/NEWS
Issue Tracking
Release Notes
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:fedoraproject:fedora:20:*:*:*:*:*:*:*

cpe:2.3:o:fedoraproject:fedora:21:*:*:*:*:*:*:*

cpe:2.3:o:fedoraproject:fedora:22:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*

Конфигурация 2

cpe:2.3:a:netcf_project:netcf:*:*:*:*:*:*:*:*

Версия до 0.2.6 (включая)

EPSS

Процентиль: 84%

0.02408

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-20

Связанные уязвимости

CVE-2014-8119

CVSS3: 7.5

ubuntu

больше 7 лет назад

The find_ifcfg_path function in netcf before 0.2.7 might allow attackers to cause a denial of service (application crash) via vectors involving augeas path expressions.

CVE-2014-8119

redhat

больше 10 лет назад

The find_ifcfg_path function in netcf before 0.2.7 might allow attackers to cause a denial of service (application crash) via vectors involving augeas path expressions.

CVE-2014-8119

CVSS3: 7.5

debian

больше 7 лет назад

The find_ifcfg_path function in netcf before 0.2.7 might allow attacke ...

SUSE-SU-2015:1792-1

suse-cvrf

почти 10 лет назад

Security update for augeas

SUSE-SU-2015:1249-1

suse-cvrf

около 10 лет назад

Security update for augeas

EPSS

Процентиль: 84%

0.02408

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-20