exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 11

ELSA-2015-2505

почти 10 лет назад

ELSA-2015-2505: abrt and libreport security update (MODERATE)

EPSS: Низкий

CVE-2015-5273

почти 10 лет назад

The abrt-action-install-debuginfo-to-abrt-cache help program in Automatic Bug Reporting Tool (ABRT) before 2.7.1 allows local users to write to arbitrary files via a symlink attack on unpacked.cpio in a pre-created directory with a predictable name in /var/tmp.

CVSS2: 4.3

EPSS: Низкий

CVE-2015-5273

больше 9 лет назад

CVSS2: 3.6

EPSS: Низкий

GHSA-w546-43x5-c5vq

больше 3 лет назад

EPSS: Низкий

CVE-2015-5287

почти 10 лет назад

The abrt-hook-ccpp help program in Automatic Bug Reporting Tool (ABRT) before 2.7.1 allows local users with certain permissions to gain privileges via a symlink attack on a file with a predictable name, as demonstrated by /var/tmp/abrt/abrt-hax-coredump or /var/spool/abrt/abrt-hax-coredump.

CVSS2: 6.9

EPSS: Средний

CVE-2015-5287

больше 9 лет назад

CVSS2: 6.9

EPSS: Средний

CVE-2015-5302

почти 10 лет назад

libreport 2.0.7 before 2.6.3 only saves changes to the first file when editing a crash report, which allows remote attackers to obtain sensitive information via unspecified vectors related to the (1) backtrace, (2) cmdline, (3) environ, (4) open_fds, (5) maps, (6) smaps, (7) hostname, (8) remote, (9) ks.cfg, or (10) anaconda-tb file attachment included in a Red Hat Bugzilla bug report.

CVSS2: 2.6

EPSS: Низкий

CVE-2015-5302

больше 9 лет назад

CVSS2: 5

EPSS: Низкий

GHSA-hf8c-7p7w-mch5

больше 3 лет назад

EPSS: Средний

GHSA-mvfv-hmwr-6c9m

больше 3 лет назад

EPSS: Низкий

ELSA-2015-2504

почти 10 лет назад

ELSA-2015-2504: libreport security update (MODERATE)

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
ELSA-2015-2505 ELSA-2015-2505: abrt and libreport security update (MODERATE)			почти 10 лет назад
CVE-2015-5273 The abrt-action-install-debuginfo-to-abrt-cache help program in Automatic Bug Reporting Tool (ABRT) before 2.7.1 allows local users to write to arbitrary files via a symlink attack on unpacked.cpio in a pre-created directory with a predictable name in /var/tmp.	CVSS2: 4.3	0% Низкий	почти 10 лет назад
CVE-2015-5273 The abrt-action-install-debuginfo-to-abrt-cache help program in Automatic Bug Reporting Tool (ABRT) before 2.7.1 allows local users to write to arbitrary files via a symlink attack on unpacked.cpio in a pre-created directory with a predictable name in /var/tmp.	CVSS2: 3.6	0% Низкий	больше 9 лет назад
GHSA-w546-43x5-c5vq The abrt-action-install-debuginfo-to-abrt-cache help program in Automatic Bug Reporting Tool (ABRT) before 2.7.1 allows local users to write to arbitrary files via a symlink attack on unpacked.cpio in a pre-created directory with a predictable name in /var/tmp.		0% Низкий	больше 3 лет назад
CVE-2015-5287 The abrt-hook-ccpp help program in Automatic Bug Reporting Tool (ABRT) before 2.7.1 allows local users with certain permissions to gain privileges via a symlink attack on a file with a predictable name, as demonstrated by /var/tmp/abrt/abrt-hax-coredump or /var/spool/abrt/abrt-hax-coredump.	CVSS2: 6.9	13% Средний	почти 10 лет назад
CVE-2015-5287 The abrt-hook-ccpp help program in Automatic Bug Reporting Tool (ABRT) before 2.7.1 allows local users with certain permissions to gain privileges via a symlink attack on a file with a predictable name, as demonstrated by /var/tmp/abrt/abrt-hax-coredump or /var/spool/abrt/abrt-hax-coredump.	CVSS2: 6.9	13% Средний	больше 9 лет назад
CVE-2015-5302 libreport 2.0.7 before 2.6.3 only saves changes to the first file when editing a crash report, which allows remote attackers to obtain sensitive information via unspecified vectors related to the (1) backtrace, (2) cmdline, (3) environ, (4) open_fds, (5) maps, (6) smaps, (7) hostname, (8) remote, (9) ks.cfg, or (10) anaconda-tb file attachment included in a Red Hat Bugzilla bug report.	CVSS2: 2.6	1% Низкий	почти 10 лет назад
CVE-2015-5302 libreport 2.0.7 before 2.6.3 only saves changes to the first file when editing a crash report, which allows remote attackers to obtain sensitive information via unspecified vectors related to the (1) backtrace, (2) cmdline, (3) environ, (4) open_fds, (5) maps, (6) smaps, (7) hostname, (8) remote, (9) ks.cfg, or (10) anaconda-tb file attachment included in a Red Hat Bugzilla bug report.	CVSS2: 5	1% Низкий	больше 9 лет назад
GHSA-hf8c-7p7w-mch5 The abrt-hook-ccpp help program in Automatic Bug Reporting Tool (ABRT) before 2.7.1 allows local users with certain permissions to gain privileges via a symlink attack on a file with a predictable name, as demonstrated by /var/tmp/abrt/abrt-hax-coredump or /var/spool/abrt/abrt-hax-coredump.		13% Средний	больше 3 лет назад
GHSA-mvfv-hmwr-6c9m libreport 2.0.7 before 2.6.3 only saves changes to the first file when editing a crash report, which allows remote attackers to obtain sensitive information via unspecified vectors related to the (1) backtrace, (2) cmdline, (3) environ, (4) open_fds, (5) maps, (6) smaps, (7) hostname, (8) remote, (9) ks.cfg, or (10) anaconda-tb file attachment included in a Red Hat Bugzilla bug report.		1% Низкий	больше 3 лет назад
ELSA-2015-2504 ELSA-2015-2504: libreport security update (MODERATE)			почти 10 лет назад

Уязвимостей на страницу