Количество 14
Количество 14
CVE-2022-3560
A flaw was found in pesign. The pesign package provides a systemd service used to start the pesign daemon. This service unit runs a script to set ACLs for /etc/pki/pesign and /run/pesign directories to grant access privileges to users in the 'pesign' group. However, the script doesn't check for symbolic links. This could allow an attacker to gain access to privileged files and directories via a path traversal attack.
CVE-2022-3560
A flaw was found in pesign. The pesign package provides a systemd service used to start the pesign daemon. This service unit runs a script to set ACLs for /etc/pki/pesign and /run/pesign directories to grant access privileges to users in the 'pesign' group. However, the script doesn't check for symbolic links. This could allow an attacker to gain access to privileged files and directories via a path traversal attack.
CVE-2022-3560
A flaw was found in pesign. The pesign package provides a systemd service used to start the pesign daemon. This service unit runs a script to set ACLs for /etc/pki/pesign and /run/pesign directories to grant access privileges to users in the 'pesign' group. However, the script doesn't check for symbolic links. This could allow an attacker to gain access to privileged files and directories via a path traversal attack.
CVE-2022-3560
A flaw was found in pesign. The pesign package provides a systemd serv ...
SUSE-SU-2023:0484-1
Security update for pesign
RLSA-2023:1572
Important: pesign security update
RLSA-2023:1067
Important: pesign security update
GHSA-w2gm-3gx9-m2p2
A flaw was found in pesign. The pesign package provides a systemd service used to start the pesign daemon. This service unit runs a script to set ACLs for /etc/pki/pesign and /run/pesign directories to grant access privileges to users in the 'pesign' group. However, the script doesn't check for symbolic links. This could allow an attacker to gain access to privileged files and directories via a path traversal attack.
ELSA-2023-1572
ELSA-2023-1572: pesign security update (IMPORTANT)
ELSA-2023-1093
ELSA-2023-1093: pesign security update (IMPORTANT)
ELSA-2023-1067
ELSA-2023-1067: pesign security update (IMPORTANT)
BDU:2023-00640
Уязвимость демона pesign подсистемы инициализации и управления службами systemd, позволяющая нарушителю повысить свои привилегии
ROS-20240426-03
Уязвимость efivar
ROS-20240426-01
Уязвимость pesign
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2022-3560 A flaw was found in pesign. The pesign package provides a systemd service used to start the pesign daemon. This service unit runs a script to set ACLs for /etc/pki/pesign and /run/pesign directories to grant access privileges to users in the 'pesign' group. However, the script doesn't check for symbolic links. This could allow an attacker to gain access to privileged files and directories via a path traversal attack. | CVSS3: 5.5 | 0% Низкий | больше 2 лет назад |
 | CVE-2022-3560 A flaw was found in pesign. The pesign package provides a systemd service used to start the pesign daemon. This service unit runs a script to set ACLs for /etc/pki/pesign and /run/pesign directories to grant access privileges to users in the 'pesign' group. However, the script doesn't check for symbolic links. This could allow an attacker to gain access to privileged files and directories via a path traversal attack. | CVSS3: 7.8 | 0% Низкий | больше 2 лет назад |
 | CVE-2022-3560 A flaw was found in pesign. The pesign package provides a systemd service used to start the pesign daemon. This service unit runs a script to set ACLs for /etc/pki/pesign and /run/pesign directories to grant access privileges to users in the 'pesign' group. However, the script doesn't check for symbolic links. This could allow an attacker to gain access to privileged files and directories via a path traversal attack. | CVSS3: 5.5 | 0% Низкий | больше 2 лет назад |
| CVE-2022-3560 A flaw was found in pesign. The pesign package provides a systemd serv ... | CVSS3: 5.5 | 0% Низкий | больше 2 лет назад |
 | SUSE-SU-2023:0484-1 Security update for pesign | 0% Низкий | больше 2 лет назад | |
 | RLSA-2023:1572 Important: pesign security update | 0% Низкий | около 2 лет назад | |
| RLSA-2023:1067 Important: pesign security update | 0% Низкий | больше 2 лет назад | |
| GHSA-w2gm-3gx9-m2p2 A flaw was found in pesign. The pesign package provides a systemd service used to start the pesign daemon. This service unit runs a script to set ACLs for /etc/pki/pesign and /run/pesign directories to grant access privileges to users in the 'pesign' group. However, the script doesn't check for symbolic links. This could allow an attacker to gain access to privileged files and directories via a path traversal attack. | CVSS3: 5.5 | 0% Низкий | больше 2 лет назад |
| ELSA-2023-1572 ELSA-2023-1572: pesign security update (IMPORTANT) | около 2 лет назад | ||
| ELSA-2023-1093 ELSA-2023-1093: pesign security update (IMPORTANT) | больше 2 лет назад | ||
| ELSA-2023-1067 ELSA-2023-1067: pesign security update (IMPORTANT) | больше 2 лет назад | ||
 | BDU:2023-00640 Уязвимость демона pesign подсистемы инициализации и управления службами systemd, позволяющая нарушителю повысить свои привилегии | CVSS3: 7.8 | 0% Низкий | больше 2 лет назад |
 | ROS-20240426-03 Уязвимость efivar | CVSS3: 7.8 | 0% Низкий | около 1 года назад |
| ROS-20240426-01 Уязвимость pesign | CVSS3: 7.8 | 0% Низкий | около 1 года назад |
Уязвимостей на страницу