CVE-2014-4040

Опубликовано: 17 июн. 2014

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 5

Описание

snap in powerpc-utils 1.2.20 produces an archive with fstab and yaboot.conf files potentially containing cleartext passwords, and lacks a warning about reviewing this archive to detect included passwords, which might allow remote attackers to obtain sensitive information by leveraging access to a technical-support data stream.

Релиз	Статус	Примечание
devel	not-affected	1.3.1-1
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was not-affected [v1.1.3]]
esm-infra/xenial	not-affected	1.3.1-1
precise	not-affected	v1.1.3
trusty	not-affected	v1.1.3
trusty/esm	DNE	trusty was not-affected [v1.1.3]
upstream	released	1.2.25
utopic	ignored	end of life
vivid	ignored	end of life
vivid/stable-phone-overlay	DNE

Показывать по

Релиз	Статус	Примечание
devel	not-affected	code not present
esm-apps/xenial	not-affected	code not present
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was not-affected [code not present]]
lucid	DNE
precise	DNE
saucy	DNE
trusty	not-affected	code not present
trusty/esm	DNE	trusty was not-affected [code not present]
upstream	needs-triage
utopic	ignored	end of life

Показывать по

Ссылки на источники

EPSS

Процентиль: 46%

0.00232

Низкий

5 Medium

CVSS2

Связанные уязвимости

CVE-2014-4040

redhat

больше 11 лет назад

CVE-2014-4040

nvd

больше 11 лет назад

CVE-2014-4040

debian

больше 11 лет назад

snap in powerpc-utils 1.2.20 produces an archive with fstab and yaboot ...

SUSE-SU-2015:0232-1

suse-cvrf

около 11 лет назад

Security update for powerpc-utils

SUSE-RU-2015:0574-1

suse-cvrf

больше 11 лет назад

Security update for powerpc-utils

EPSS

Процентиль: 46%

0.00232

Низкий

5 Medium

CVSS2

CVE-2014-4040

Описание

Пакет powerpc-utils

Пакет ppc64-diag

Ссылки на источники

Связанные уязвимости