Описание
The quagga package before 0.99.23-2.6.1 in openSUSE and SUSE Linux Enterprise Server 11 SP 1 uses weak permissions for /etc/quagga, which allows local users to obtain sensitive information by reading files in the directory.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 1.0.20160315-2 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [0.99.22.4-3ubuntu1.2]] |
| esm-infra/xenial | released | 0.99.24.1-2ubuntu1.1 |
| precise | released | 0.99.20.1-0ubuntu0.12.04.5 |
| trusty | released | 0.99.22.4-3ubuntu1.2 |
| trusty/esm | DNE | trusty was released [0.99.22.4-3ubuntu1.2] |
| upstream | not-affected | |
| vivid/stable-phone-overlay | DNE | |
| vivid/ubuntu-core | DNE | |
| wily | ignored | end of life |
Показывать по
EPSS
2.1 Low
CVSS2
5.5 Medium
CVSS3
Связанные уязвимости
The quagga package before 0.99.23-2.6.1 in openSUSE and SUSE Linux Enterprise Server 11 SP 1 uses weak permissions for /etc/quagga, which allows local users to obtain sensitive information by reading files in the directory.
The quagga package before 0.99.23-2.6.1 in openSUSE and SUSE Linux Enterprise Server 11 SP 1 uses weak permissions for /etc/quagga, which allows local users to obtain sensitive information by reading files in the directory.
The quagga package before 0.99.23-2.6.1 in openSUSE and SUSE Linux Ent ...
The quagga package before 0.99.23-2.6.1 in openSUSE and SUSE Linux Enterprise Server 11 SP 1 uses weak permissions for /etc/quagga, which allows local users to obtain sensitive information by reading files in the directory.
Уязвимость операционных систем OpenSUSE Leap, openSUSE, позволяющая нарушителю получить конфиденциальную информацию
EPSS
2.1 Low
CVSS2
5.5 Medium
CVSS3