exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 5

CVE-2018-12026

больше 7 лет назад

During the spawning of a malicious Passenger-managed application, SpawningKit in Phusion Passenger 5.3.x before 5.3.2 allows such applications to replace key files or directories in the spawning communication directory with symlinks. This then could result in arbitrary reads and writes, which in turn can result in information disclosure and privilege escalation.

CVSS3: 9.8

EPSS: Низкий

CVE-2018-12026

больше 7 лет назад

During the spawning of a malicious Passenger-managed application, SpawningKit in Phusion Passenger 5.3.x before 5.3.2 allows such applications to replace key files or directories in the spawning communication directory with symlinks. This then could result in arbitrary reads and writes, which in turn can result in information disclosure and privilege escalation.

CVSS3: 7.1

EPSS: Низкий

CVE-2018-12026

больше 7 лет назад

During the spawning of a malicious Passenger-managed application, SpawningKit in Phusion Passenger 5.3.x before 5.3.2 allows such applications to replace key files or directories in the spawning communication directory with symlinks. This then could result in arbitrary reads and writes, which in turn can result in information disclosure and privilege escalation.

CVSS3: 9.8

EPSS: Низкий

CVE-2018-12026

больше 7 лет назад

During the spawning of a malicious Passenger-managed application, Spaw ...

CVSS3: 9.8

EPSS: Низкий

GHSA-7cv3-gvmc-8mq5

больше 3 лет назад

Phusion Passenger SpawningKit Contains Arbitrary Read/Write Vulnerability

CVSS3: 9.8

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2018-12026 During the spawning of a malicious Passenger-managed application, SpawningKit in Phusion Passenger 5.3.x before 5.3.2 allows such applications to replace key files or directories in the spawning communication directory with symlinks. This then could result in arbitrary reads and writes, which in turn can result in information disclosure and privilege escalation.	CVSS3: 9.8	1% Низкий	больше 7 лет назад
CVE-2018-12026 During the spawning of a malicious Passenger-managed application, SpawningKit in Phusion Passenger 5.3.x before 5.3.2 allows such applications to replace key files or directories in the spawning communication directory with symlinks. This then could result in arbitrary reads and writes, which in turn can result in information disclosure and privilege escalation.	CVSS3: 7.1	1% Низкий	больше 7 лет назад
CVE-2018-12026 During the spawning of a malicious Passenger-managed application, SpawningKit in Phusion Passenger 5.3.x before 5.3.2 allows such applications to replace key files or directories in the spawning communication directory with symlinks. This then could result in arbitrary reads and writes, which in turn can result in information disclosure and privilege escalation.	CVSS3: 9.8	1% Низкий	больше 7 лет назад
CVE-2018-12026 During the spawning of a malicious Passenger-managed application, Spaw ...	CVSS3: 9.8	1% Низкий	больше 7 лет назад
GHSA-7cv3-gvmc-8mq5 Phusion Passenger SpawningKit Contains Arbitrary Read/Write Vulnerability	CVSS3: 9.8	1% Низкий	больше 3 лет назад

Уязвимостей на страницу