CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2012-4480
https://notcve.org/view.php?id=CVE-2012-4480
mom creates world-writable pid files in /var/run mom crea archivos pid de tipo world-writable en /var/run. • http://lists.fedoraproject.org/pipermail/package-announce/2012-October/089658.html http://lists.fedoraproject.org/pipermail/package-announce/2012-October/090188.html https://access.redhat.com/security/cve/cve-2012-4480 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-4480 https://exchange.xforce.ibmcloud.com/vulnerabilities/79190 • CWE-269: Improper Privilege Management •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 1CVE-2012-5535
https://notcve.org/view.php?id=CVE-2012-5535
gnome-system-log polkit policy allows arbitrary files on the system to be read La política polkit de gnome-system-log, permite leer archivos arbitrarios en el sistema. • http://lists.fedoraproject.org/pipermail/package-announce/2012-December/094059.html http://lists.fedoraproject.org/pipermail/package-announce/2012-December/094181.html https://access.redhat.com/security/cve/cve-2012-5535 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-5535 https://security-tracker.debian.org/tracker/CVE-2012-5535 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 4.7EPSS: 0%CPEs: 7EXPL: 1CVE-2015-7810
https://notcve.org/view.php?id=CVE-2015-7810
libbluray MountManager class has a time-of-check time-of-use (TOCTOU) race when expanding JAR files La clase libbluray MountManager presenta una carrera de tiempo de comprobación y tiempo de uso (TOCTOU) cuando se expanden archivos JAR. • http://www.openwall.com/lists/oss-security/2015/10/12/7 http://www.securityfocus.com/bid/72769 https://access.redhat.com/security/cve/cve-2015-7810 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2015-7810 https://security-tracker.debian.org/tracker/CVE-2015-7810 • CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition •
CVSS: 5.5EPSS: 0%CPEs: 7EXPL: 0CVE-2012-6136
https://notcve.org/view.php?id=CVE-2012-6136
tuned 2.10.0 creates its PID file with insecure permissions which allows local users to kill arbitrary processes. tuned versión 2.10.0 crea su archivo PID con permisos no seguros lo que permite a usuarios locales eliminar procesos arbitrarios. • https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-6136 https://security-tracker.debian.org/tracker/CVE-2012-6136 • CWE-276: Incorrect Default Permissions •
CVSS: 4.3EPSS: 0%CPEs: 4EXPL: 0CVE-2012-1161
https://notcve.org/view.php?id=CVE-2012-1161
Moodle before 2.2.2: Course information leak via hidden courses being displayed in tag search results Moodle versiones anteriores a la versión 2.2.2: filtra información del curso por medio de cursos ocultos que son mostrados en los resultados de búsqueda de etiquetas. • http://lists.fedoraproject.org/pipermail/package-announce/2012-April/077635.html http://lists.fedoraproject.org/pipermail/package-announce/2012-April/078209.html http://lists.fedoraproject.org/pipermail/package-announce/2012-April/078210.html http://lists.fedoraproject.org/pipermail/package-announce/2012-May/080712.html http://lists.fedoraproject.org/pipermail/package-announce/2012-May/081047.html https://access.redhat.com/security/cve/cve-2012-1161 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-116 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •