Описание
firewalld.py in firewalld before 0.4.3.3 allows local users to bypass authentication and modify firewall configurations via the (1) addPassthrough, (2) removePassthrough, (3) addEntry, (4) removeEntry, or (5) setEntries D-Bus API method.
Ссылки
- Third Party Advisory
- PatchVendor Advisory
- Mailing List
- Third Party AdvisoryVDB Entry
- Issue TrackingPatch
- Third Party Advisory
- Third Party Advisory
- PatchVendor Advisory
- Mailing List
- Third Party AdvisoryVDB Entry
- Issue TrackingPatch
- Third Party Advisory
Уязвимые конфигурации
Одно из
EPSS
5.5 Medium
CVSS3
2.1 Low
CVSS2
Дефекты
Связанные уязвимости
firewalld.py in firewalld before 0.4.3.3 allows local users to bypass authentication and modify firewall configurations via the (1) addPassthrough, (2) removePassthrough, (3) addEntry, (4) removeEntry, or (5) setEntries D-Bus API method.
firewalld.py in firewalld before 0.4.3.3 allows local users to bypass authentication and modify firewall configurations via the (1) addPassthrough, (2) removePassthrough, (3) addEntry, (4) removeEntry, or (5) setEntries D-Bus API method.
firewalld.py in firewalld before 0.4.3.3 allows local users to bypass ...
firewalld.py in firewalld before 0.4.3.3 allows local users to bypass authentication and modify firewall configurations via the (1) addPassthrough, (2) removePassthrough, (3) addEntry, (4) removeEntry, or (5) setEntries D-Bus API method.
ELSA-2016-2597: firewalld security, bug fix, and enhancement update (MODERATE)
EPSS
5.5 Medium
CVSS3
2.1 Low
CVSS2