Описание
Automatic Bug Reporting Tool (ABRT) before 2.1.6 allows local users to obtain sensitive information about arbitrary files via vectors related to sha1sums.
Отчет
Not vulnerable. This issue did not affect the versions of abrt as shipped with Red Hat Enterprise Linux 6.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 6 | abrt | Not affected | ||
| Red Hat Enterprise Linux 7 | abrt | Not affected |
Показывать по
10
Дополнительная информация
Статус:
Low
Дефект:
CWE-200
https://bugzilla.redhat.com/show_bug.cgi?id=991604ABRT: (substantially) limited leak of unauthorized information
EPSS
Процентиль: 12%
0.0004
Низкий
1.2 Low
CVSS2
Связанные уязвимости
CVSS3: 3.3
nvd
почти 8 лет назад
Automatic Bug Reporting Tool (ABRT) before 2.1.6 allows local users to obtain sensitive information about arbitrary files via vectors related to sha1sums.
CVSS3: 3.3
github
больше 3 лет назад
Automatic Bug Reporting Tool (ABRT) before 2.1.6 allows local users to obtain sensitive information about arbitrary files via vectors related to sha1sums.
EPSS
Процентиль: 12%
0.0004
Низкий
1.2 Low
CVSS2