Skip to main content
CVE-2015-1197 LOW POC Monitor

cpio 2.11, when using the --no-absolute-filenames option, allows local users to write to arbitrary files via a symlink attack on a file in an archive. Rated low severity (CVSS 1.9). Public exploit code available and no vendor patch available.

Information Disclosure Cpio
NVD
CVSS 2.0
1.9
EPSS
3.4%
CVE-2014-1832 LOW PATCH Monitor

Phusion Passenger 4.0.37 allows local users to write to certain files and directories via a symlink attack on (1) control_process.pid or a (2) generation-* file. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity.

Information Disclosure Passenger
NVD GitHub
CVSS 2.0
2.1
EPSS
0.1%
CVE-2014-1831 LOW PATCH Monitor

Phusion Passenger before 4.0.37 allows local users to write to certain files and directories via a symlink attack on (1) control_process.pid or a (2) generation-* file. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity.

Information Disclosure Passenger
NVD GitHub
CVSS 2.0
2.1
EPSS
0.1%
CVE-2014-6147 LOW PATCH Monitor

IBM Flex System Manager (FSM) 1.1.x.x, 1.2.0.x, 1.2.1.x, 1.3.0.0, 1.3.1.0, and 1.3.2.0 allows local users to obtain sensitive information, and consequently gain privileges or conduct impersonation. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

IBM Information Disclosure Flex System Manager
NVD
CVSS 2.0
2.1
EPSS
0.1%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy