Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2015-5189

Опубликовано: 03 сент. 2015
Источник: nvd
CVSS2: 4.9
EPSS Низкий

Описание

Race condition in pcsd in PCS 0.9.139 and earlier uses a global variable to validate usernames, which allows remote authenticated users to gain privileges by sending a command that is checked for security after another user is authenticated.

Ссылки

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:a:pacemaker\/corosync_configuration_system_project:pacemaker\/corosync_configuration_system:*:*:*:*:*:*:*:*
Версия до 0.9.139 (включая)

EPSS

Процентиль: 33%
0.00133
Низкий

4.9 Medium

CVSS2

Дефекты

CWE-362

Связанные уязвимости

redhat логотип

CVE-2015-5189

redhat
больше 10 лет назад

Race condition in pcsd in PCS 0.9.139 and earlier uses a global variable to validate usernames, which allows remote authenticated users to gain privileges by sending a command that is checked for security after another user is authenticated.

debian логотип

CVE-2015-5189

debian
больше 10 лет назад

Race condition in pcsd in PCS 0.9.139 and earlier uses a global variab ...

github логотип

GHSA-9cpv-2w33-4r7c

github
больше 3 лет назад

Race condition in pcsd in PCS 0.9.139 and earlier uses a global variable to validate usernames, which allows remote authenticated users to gain privileges by sending a command that is checked for security after another user is authenticated.

EPSS

Процентиль: 33%
0.00133
Низкий

4.9 Medium

CVSS2

Дефекты

CWE-362