exploitDog

CVE-2017-12189

Опубликовано: 03 янв. 2018

Источник: redhat

CVSS3: 7

EPSS Низкий

Описание

It was discovered that the jboss init script as used in Red Hat JBoss Enterprise Application Platform 7.0.7.GA performed unsafe file handling which could result in local privilege escalation. This issue is a result of an incomplete fix for CVE-2016-8656.

It was discovered that the jboss init script performed unsafe file handling which could result in local privilege escalation.

Ссылки на источники

Дополнительная информация

Статус:

Important

https://bugzilla.redhat.com/show_bug.cgi?id=1499631jboss: unsafe chown of server.log in jboss init script allows privilege escalation (Incomplete fix for CVE-2016-8656)

EPSS

Процентиль: 15%

0.00049

Низкий

7 High

CVSS3

Связанные уязвимости

CVE-2017-12189

CVSS3: 7.8

nvd

около 8 лет назад

It was discovered that the jboss init script as used in Red Hat JBoss Enterprise Application Platform 7.0.7.GA performed unsafe file handling which could result in local privilege escalation. This issue is a result of an incomplete fix for CVE-2016-8656.

GHSA-g689-52m8-86fh

CVSS3: 7.8

github

больше 3 лет назад

It was discovered that the jboss init script as used in Red Hat JBoss Enterprise Application Platform 7.0.7.GA performed unsafe file handling which could result in local privilege escalation. This issue is a result of an incomplete fix for CVE-2016-8656.

EPSS

Процентиль: 15%

0.00049

Низкий

7 High

CVSS3