Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2017-7495

Опубликовано: 15 мая 2017
Источник: nvd
CVSS3: 5.5
CVSS2: 2.1
EPSS Низкий

Описание

fs/ext4/inode.c in the Linux kernel before 4.6.2, when ext4 data=ordered mode is used, mishandles a needs-flushing-before-commit list, which allows local users to obtain sensitive information from other users' files in opportunistic circumstances by waiting for a hardware reset, creating a new file, making write system calls, and reading this file.

Ссылки

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Версия до 4.6.1 (включая)

EPSS

Процентиль: 16%
0.00051
Низкий

5.5 Medium

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-200

Связанные уязвимости

ubuntu логотип

CVE-2017-7495

CVSS3: 5.5
ubuntu
около 8 лет назад

fs/ext4/inode.c in the Linux kernel before 4.6.2, when ext4 data=ordered mode is used, mishandles a needs-flushing-before-commit list, which allows local users to obtain sensitive information from other users' files in opportunistic circumstances by waiting for a hardware reset, creating a new file, making write system calls, and reading this file.

redhat логотип

CVE-2017-7495

CVSS3: 6.2
redhat
около 8 лет назад

fs/ext4/inode.c in the Linux kernel before 4.6.2, when ext4 data=ordered mode is used, mishandles a needs-flushing-before-commit list, which allows local users to obtain sensitive information from other users' files in opportunistic circumstances by waiting for a hardware reset, creating a new file, making write system calls, and reading this file.

debian логотип

CVE-2017-7495

CVSS3: 5.5
debian
около 8 лет назад

fs/ext4/inode.c in the Linux kernel before 4.6.2, when ext4 data=order ...

github логотип

GHSA-jg67-r7fp-4j3h

CVSS3: 5.5
github
около 3 лет назад

fs/ext4/inode.c in the Linux kernel before 4.6.2, when ext4 data=ordered mode is used, mishandles a needs-flushing-before-commit list, which allows local users to obtain sensitive information from other users' files in opportunistic circumstances by waiting for a hardware reset, creating a new file, making write system calls, and reading this file.

oracle-oval логотип

ELSA-2019-4823

oracle-oval
почти 6 лет назад

ELSA-2019-4823: Unbreakable Enterprise kernel security update (IMPORTANT)

EPSS

Процентиль: 16%
0.00051
Низкий

5.5 Medium

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-200