Описание
mod_wsgi before 4.2.4 for Apache, when creating a daemon process group, does not properly handle when group privileges cannot be dropped, which might allow attackers to gain privileges via unspecified vectors.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 4.3.0-1 |
| esm-infra-legacy/trusty | released | 3.4-4ubuntu2.1.14.04.2 |
| lucid | ignored | end of life |
| precise | released | 3.3-4ubuntu0.2 |
| trusty | released | 3.4-4ubuntu2.1.14.04.2 |
| trusty/esm | released | 3.4-4ubuntu2.1.14.04.2 |
| upstream | released | 4.2.4 |
| utopic | released | 3.5-1ubuntu0.1 |
Показывать по
EPSS
6.9 Medium
CVSS2
Связанные уязвимости
mod_wsgi before 4.2.4 for Apache, when creating a daemon process group, does not properly handle when group privileges cannot be dropped, which might allow attackers to gain privileges via unspecified vectors.
mod_wsgi before 4.2.4 for Apache, when creating a daemon process group, does not properly handle when group privileges cannot be dropped, which might allow attackers to gain privileges via unspecified vectors.
mod_wsgi before 4.2.4 for Apache, when creating a daemon process group ...
mod_wsgi before 4.2.4 for Apache, when creating a daemon process group, does not properly handle when group privileges cannot be dropped, which might allow attackers to gain privileges via unspecified vectors.
EPSS
6.9 Medium
CVSS2