Skip to main content
CVE-2012-3504 LOW POC Monitor

The nssconfigFound function in genkey.pl in crypto-utils 2.4.1-34 allows local users to overwrite arbitrary files via a symlink attack on the "list" file in the current working directory. Rated low severity (CVSS 3.6), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Privilege Escalation Crypto Utils
NVD
CVSS 2.0
3.6
EPSS
0.1%
CVE-2012-5355 LOW Monitor

welcome.py in xdiagnose before 2.5.2ubuntu0.1 allows local users to overwrite arbitrary files via a symlink attack on a temporary file with a predictable name in /tmp. Rated low severity (CVSS 3.3). No vendor patch available.

Information Disclosure Xdiagnose
NVD
CVSS 2.0
3.3
EPSS
0.0%
CVE-2012-4454 LOW Monitor

openCryptoki before 2.4.1, when using spinlocks, allows local users to create or set world-writable permissions on arbitrary files via a symlink attack on the (1) .pkapi_xpk or (2) .pkcs11spinloc. Rated low severity (CVSS 2.9). No vendor patch available.

Privilege Escalation Opencryptoki
NVD
CVSS 2.0
2.9
EPSS
0.7%
CVE-2012-2286 LOW Monitor

Unspecified vulnerability in EMC RSA Adaptive Authentication On-Premise (AAOP) 6.0.2.1 before SP3 P3 allows remote attackers to obtain sensitive information via unknown vectors. Rated low severity (CVSS 2.9). No vendor patch available.

Information Disclosure Rsa Adaptive Authentication On Premise
NVD
CVSS 2.0
2.9
EPSS
0.1%
CVE-2012-4899 LOW PATCH Monitor

WellinTech KingView 6.5.3 and earlier uses a weak password-hashing algorithm, which makes it easier for local users to discover credentials by reading an unspecified file. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity.

Information Disclosure Kingview
NVD
CVSS 2.0
2.1
EPSS
0.1%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy