Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2017-2626

Опубликовано: 27 июл. 2018
Источник: ubuntu
Приоритет: low
EPSS Низкий
CVSS2: 2.1
CVSS3: 5.2

Описание

It was discovered that libICE before 1.0.9-8 used a weak entropy to generate keys. A local attacker could potentially use this flaw for session hijacking using the information available from the process list.

РелизСтатусПримечание
artful

not-affected

2:1.0.9-2
bionic

released

2:1.0.9-2ubuntu0.18.04.1
cosmic

not-affected

2:1.0.9-2
devel

not-affected

2:1.0.9-2
disco

not-affected

2:1.0.9-2
eoan

not-affected

2:1.0.9-2
esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was needed]
esm-infra/bionic

released

2:1.0.9-2ubuntu0.18.04.1
esm-infra/focal

not-affected

2:1.0.9-2
esm-infra/xenial

released

2:1.0.9-1ubuntu0.16.04.1+esm1

Показывать по

Ссылки на источники

EPSS

Процентиль: 8%
0.00032
Низкий

2.1 Low

CVSS2

5.2 Medium

CVSS3

Связанные уязвимости

redhat логотип

CVE-2017-2626

CVSS3: 5.2
redhat
больше 8 лет назад

It was discovered that libICE before 1.0.9-8 used a weak entropy to generate keys. A local attacker could potentially use this flaw for session hijacking using the information available from the process list.

nvd логотип

CVE-2017-2626

CVSS3: 5.2
nvd
больше 7 лет назад

It was discovered that libICE before 1.0.9-8 used a weak entropy to generate keys. A local attacker could potentially use this flaw for session hijacking using the information available from the process list.

debian логотип

CVE-2017-2626

CVSS3: 5.2
debian
больше 7 лет назад

It was discovered that libICE before 1.0.9-8 used a weak entropy to ge ...

suse-cvrf логотип

openSUSE-SU-2017:1801-1

suse-cvrf
больше 8 лет назад

Security update for libICE

suse-cvrf логотип

SUSE-SU-2018:0337-1

suse-cvrf
почти 8 лет назад

Security update for libICE

EPSS

Процентиль: 8%
0.00032
Низкий

2.1 Low

CVSS2

5.2 Medium

CVSS3