CVE-2015-3407

Опубликовано: 19 мая 2015

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 5

Описание

Module::Signature before 0.74 allows remote attackers to bypass signature verification for files via a signature file that does not list the files.

Релиз	Статус	Примечание
devel	not-affected	0.78-2
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was released [0.73-1ubuntu0.14.04.1]]
lucid	ignored	end of life
precise	released	0.68-1ubuntu0.12.04.2
trusty	released	0.73-1ubuntu0.14.04.1
trusty/esm	DNE	trusty was released [0.73-1ubuntu0.14.04.1]
upstream	released	0.75
utopic	released	0.73-1ubuntu0.14.10.1
vivid	released	0.73-1ubuntu0.15.04.1

Показывать по

EPSS

Процентиль: 58%

0.00363

Низкий

5 Medium

CVSS2

CVE-2015-3407

redhat

почти 11 лет назад

Module::Signature before 0.74 allows remote attackers to bypass signature verification for files via a signature file that does not list the files.

CVE-2015-3407

nvd

больше 10 лет назад

Module::Signature before 0.74 allows remote attackers to bypass signature verification for files via a signature file that does not list the files.

CVE-2015-3407

debian

больше 10 лет назад

Module::Signature before 0.74 allows remote attackers to bypass signat ...

GHSA-2qpg-g63h-ghqr

github

больше 3 лет назад

Module::Signature before 0.74 allows remote attackers to bypass signature verification for files via a signature file that does not list the files.

EPSS

Процентиль: 58%

0.00363

Низкий

5 Medium

CVSS2