Описание
firewalld.py in firewalld before 0.4.3.3 allows local users to bypass authentication and modify firewall configurations via the (1) addPassthrough, (2) removePassthrough, (3) addEntry, (4) removeEntry, or (5) setEntries D-Bus API method.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | not-affected | 0.4.3.3-1 |
| devel | not-affected | 0.4.3.3-1 |
| esm-apps/xenial | released | 0.4.0-1ubuntu0.1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was not-affected [0.3.7-1]] |
| precise | DNE | |
| precise/esm | DNE | |
| trusty | not-affected | 0.3.7-1 |
| trusty/esm | DNE | trusty was not-affected [0.3.7-1] |
| upstream | released | 0.4.3.3-1 |
| vivid/stable-phone-overlay | DNE |
Показывать по
EPSS
2.1 Low
CVSS2
5.5 Medium
CVSS3
Связанные уязвимости
firewalld.py in firewalld before 0.4.3.3 allows local users to bypass authentication and modify firewall configurations via the (1) addPassthrough, (2) removePassthrough, (3) addEntry, (4) removeEntry, or (5) setEntries D-Bus API method.
firewalld.py in firewalld before 0.4.3.3 allows local users to bypass authentication and modify firewall configurations via the (1) addPassthrough, (2) removePassthrough, (3) addEntry, (4) removeEntry, or (5) setEntries D-Bus API method.
firewalld.py in firewalld before 0.4.3.3 allows local users to bypass ...
firewalld.py in firewalld before 0.4.3.3 allows local users to bypass authentication and modify firewall configurations via the (1) addPassthrough, (2) removePassthrough, (3) addEntry, (4) removeEntry, or (5) setEntries D-Bus API method.
ELSA-2016-2597: firewalld security, bug fix, and enhancement update (MODERATE)
EPSS
2.1 Low
CVSS2
5.5 Medium
CVSS3