exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 21

GHSA-46cw-54vx-86g5

около 3 лет назад

multipath-tools 0.7.0 through 0.9.x before 0.9.2 allows local users to obtain root access, as exploited alone or in conjunction with CVE-2022-41973. Local users able to write to UNIX domain sockets can bypass access controls and manipulate the multipath setup. This can lead to local privilege escalation to root. This occurs because an attacker can repeat a keyword, which is mishandled because arithmetic ADD is used instead of bitwise OR.

CVSS3: 7.8

EPSS: Низкий

CVE-2022-41974

около 3 лет назад

CVSS3: 7.8

EPSS: Низкий

CVE-2022-41974

около 3 лет назад

CVSS3: 7.8

EPSS: Низкий

CVE-2022-41974

около 3 лет назад

CVSS3: 7.8

EPSS: Низкий

CVE-2022-41974

около 3 лет назад

multipath-tools 0.7.0 through 0.9.x before 0.9.2 allows local users to obtain root access as exploited alone or in conjunction with CVE-2022-41973. Local users able to write to UNIX domain sockets can bypass access controls and manipulate the multipath setup. This can lead to local privilege escalation to root. This occurs because an attacker can repeat a keyword which is mishandled because arithmetic ADD is used instead of bitwise OR.

CVSS3: 7.8

EPSS: Низкий

CVE-2022-41974

около 3 лет назад

multipath-tools 0.7.0 through 0.9.x before 0.9.2 allows local users to ...

CVSS3: 7.8

EPSS: Низкий

SUSE-SU-2022:3715-1

около 3 лет назад

Security update for multipath-tools

EPSS: Низкий

SUSE-SU-2022:3714-1

около 3 лет назад

Security update for multipath-tools

EPSS: Низкий

SUSE-SU-2022:3713-1

около 3 лет назад

Security update for multipath-tools

EPSS: Низкий

SUSE-SU-2022:3712-1

около 3 лет назад

Security update for multipath-tools

EPSS: Низкий

RLSA-2022:7192

около 3 лет назад

Important: device-mapper-multipath security update

EPSS: Низкий

ELSA-2022-7192

около 3 лет назад

ELSA-2022-7192: device-mapper-multipath security update (IMPORTANT)

EPSS: Низкий

ELSA-2022-7186

около 3 лет назад

ELSA-2022-7186: device-mapper-multipath security update (IMPORTANT)

EPSS: Низкий

ELSA-2022-7185

около 3 лет назад

ELSA-2022-7185: device-mapper-multipath security update (IMPORTANT)

EPSS: Низкий

BDU:2022-06669

около 3 лет назад

Уязвимость программного обеспечения управления драйверами для организации многопутевого доступа multipath-tools, связанная с ошибками при управлении привилегиями, позволяющая нарушителю повысить свои привилегии до root-пользователя

CVSS3: 7.8

EPSS: Низкий

SUSE-SU-2022:3711-1

около 3 лет назад

Security update for multipath-tools

EPSS: Низкий

SUSE-SU-2022:3710-1

около 3 лет назад

Security update for multipath-tools

EPSS: Низкий

SUSE-SU-2022:3709-1

около 3 лет назад

Security update for multipath-tools

EPSS: Низкий

SUSE-SU-2022:3708-1

около 3 лет назад

Security update for multipath-tools

EPSS: Низкий

SUSE-SU-2022:3707-1

около 3 лет назад

Security update for multipath-tools

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
GHSA-46cw-54vx-86g5 multipath-tools 0.7.0 through 0.9.x before 0.9.2 allows local users to obtain root access, as exploited alone or in conjunction with CVE-2022-41973. Local users able to write to UNIX domain sockets can bypass access controls and manipulate the multipath setup. This can lead to local privilege escalation to root. This occurs because an attacker can repeat a keyword, which is mishandled because arithmetic ADD is used instead of bitwise OR.	CVSS3: 7.8	0% Низкий	около 3 лет назад
CVE-2022-41974 multipath-tools 0.7.0 through 0.9.x before 0.9.2 allows local users to obtain root access, as exploited alone or in conjunction with CVE-2022-41973. Local users able to write to UNIX domain sockets can bypass access controls and manipulate the multipath setup. This can lead to local privilege escalation to root. This occurs because an attacker can repeat a keyword, which is mishandled because arithmetic ADD is used instead of bitwise OR.	CVSS3: 7.8	0% Низкий	около 3 лет назад
CVE-2022-41974 multipath-tools 0.7.0 through 0.9.x before 0.9.2 allows local users to obtain root access, as exploited alone or in conjunction with CVE-2022-41973. Local users able to write to UNIX domain sockets can bypass access controls and manipulate the multipath setup. This can lead to local privilege escalation to root. This occurs because an attacker can repeat a keyword, which is mishandled because arithmetic ADD is used instead of bitwise OR.	CVSS3: 7.8	0% Низкий	около 3 лет назад
CVE-2022-41974 multipath-tools 0.7.0 through 0.9.x before 0.9.2 allows local users to obtain root access, as exploited alone or in conjunction with CVE-2022-41973. Local users able to write to UNIX domain sockets can bypass access controls and manipulate the multipath setup. This can lead to local privilege escalation to root. This occurs because an attacker can repeat a keyword, which is mishandled because arithmetic ADD is used instead of bitwise OR.	CVSS3: 7.8	0% Низкий	около 3 лет назад
CVE-2022-41974 multipath-tools 0.7.0 through 0.9.x before 0.9.2 allows local users to obtain root access as exploited alone or in conjunction with CVE-2022-41973. Local users able to write to UNIX domain sockets can bypass access controls and manipulate the multipath setup. This can lead to local privilege escalation to root. This occurs because an attacker can repeat a keyword which is mishandled because arithmetic ADD is used instead of bitwise OR.	CVSS3: 7.8	0% Низкий	около 3 лет назад
CVE-2022-41974 multipath-tools 0.7.0 through 0.9.x before 0.9.2 allows local users to ...	CVSS3: 7.8	0% Низкий	около 3 лет назад
SUSE-SU-2022:3715-1 Security update for multipath-tools		0% Низкий	около 3 лет назад
SUSE-SU-2022:3714-1 Security update for multipath-tools		0% Низкий	около 3 лет назад
SUSE-SU-2022:3713-1 Security update for multipath-tools		0% Низкий	около 3 лет назад
SUSE-SU-2022:3712-1 Security update for multipath-tools		0% Низкий	около 3 лет назад
RLSA-2022:7192 Important: device-mapper-multipath security update		0% Низкий	около 3 лет назад
ELSA-2022-7192 ELSA-2022-7192: device-mapper-multipath security update (IMPORTANT)			около 3 лет назад
ELSA-2022-7186 ELSA-2022-7186: device-mapper-multipath security update (IMPORTANT)			около 3 лет назад
ELSA-2022-7185 ELSA-2022-7185: device-mapper-multipath security update (IMPORTANT)			около 3 лет назад
BDU:2022-06669 Уязвимость программного обеспечения управления драйверами для организации многопутевого доступа multipath-tools, связанная с ошибками при управлении привилегиями, позволяющая нарушителю повысить свои привилегии до root-пользователя	CVSS3: 7.8	0% Низкий	около 3 лет назад
SUSE-SU-2022:3711-1 Security update for multipath-tools			около 3 лет назад
SUSE-SU-2022:3710-1 Security update for multipath-tools			около 3 лет назад
SUSE-SU-2022:3709-1 Security update for multipath-tools			около 3 лет назад
SUSE-SU-2022:3708-1 Security update for multipath-tools			около 3 лет назад
SUSE-SU-2022:3707-1 Security update for multipath-tools			около 3 лет назад

Уязвимостей на страницу