Skip to main content
CVE-2013-0914 LOW Monitor

The flush_signal_handlers function in kernel/signal.c in the Linux kernel before 3.8.4 preserves the value of the sa_restorer field across an exec operation, which makes it easier for local users to. Rated low severity (CVSS 3.6), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Linux Linux Kernel
NVD GitHub
CVSS 2.0
3.6
EPSS
0.0%
CVE-2013-1840 LOW PATCH Monitor

The v1 API in OpenStack Glance Essex (2012.1), Folsom (2012.2), and Grizzly, when using the single-tenant Swift or S3 store, reports the location field, which allows remote authenticated users to. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Information Disclosure Glance
NVD
CVSS 2.0
3.5
EPSS
0.3%
CVE-2013-2636 LOW PATCH Monitor

net/bridge/br_mdb.c in the Linux kernel before 3.8.4 does not initialize certain structures, which allows local users to obtain sensitive information from kernel memory via a crafted application. Rated low severity (CVSS 1.9).

Linux Information Disclosure Linux Kernel
NVD GitHub
CVSS 2.0
1.9
EPSS
0.1%
CVE-2013-2635 LOW PATCH Monitor

The rtnl_fill_ifinfo function in net/core/rtnetlink.c in the Linux kernel before 3.8.4 does not initialize a certain structure member, which allows local users to obtain sensitive information from. Rated low severity (CVSS 1.9).

Linux Information Disclosure Linux Kernel
NVD GitHub
CVSS 2.0
1.9
EPSS
0.0%
CVE-2013-2634 LOW PATCH Monitor

net/dcb/dcbnl.c in the Linux kernel before 3.8.4 does not initialize certain structures, which allows local users to obtain sensitive information from kernel stack memory via a crafted application. Rated low severity (CVSS 1.9).

Linux Information Disclosure Linux Kernel
NVD GitHub
CVSS 2.0
1.9
EPSS
0.0%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy