CVE-2016-10099

Опубликовано: 02 янв. 2017

Источник: ubuntu

Приоритет: low

EPSS Низкий

CVSS2: 5

CVSS3: 5.3

Описание

Borg (aka BorgBackup) before 1.0.9 has a flaw in the cryptographic protocol used to authenticate the manifest (list of archives), potentially allowing an attacker to spoof the list of archives.

Релиз	Статус	Примечание
artful	ignored	end of life
bionic	not-affected	1.0.9-1
cosmic	not-affected	1.0.9-1
devel	not-affected	1.0.9-1
esm-apps/bionic	not-affected	1.0.9-1
esm-apps/xenial	not-affected	1.0.9-1
esm-infra-legacy/trusty	DNE
precise	DNE
precise/esm	DNE
trusty	DNE

Показывать по

Ссылки на источники

EPSS

Процентиль: 67%

0.0054

Низкий

5 Medium

CVSS2

5.3 Medium

CVSS3

Связанные уязвимости

CVE-2016-10099

CVSS3: 5.3

nvd

около 9 лет назад

Borg (aka BorgBackup) before 1.0.9 has a flaw in the cryptographic protocol used to authenticate the manifest (list of archives), potentially allowing an attacker to spoof the list of archives.

CVE-2016-10099

CVSS3: 5.3

debian

около 9 лет назад

Borg (aka BorgBackup) before 1.0.9 has a flaw in the cryptographic pro ...

GHSA-rpmm-8crc-6fm8

CVSS3: 5.3

github

больше 3 лет назад

Borg (aka BorgBackup) before 1.0.9 has a flaw in the cryptographic protocol used to authenticate the manifest (list of archives), potentially allowing an attacker to spoof the list of archives.

EPSS

Процентиль: 67%

0.0054

Низкий

5 Medium

CVSS2

5.3 Medium

CVSS3

CVE-2016-10099

Описание

Пакет borgbackup

Ссылки на источники

Связанные уязвимости