Skip to main content

Dracut

2 CVEs product

Monthly

CVE-2015-0794 LOW Monitor

modules.d/90crypt/module-setup.sh in the dracut package before 037-17.30.1 in openSUSE 13.2 allows local users to have unspecified impact via a symlink attack on /tmp/dracut_block_uuid.map. Rated low severity (CVSS 3.6), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Dracut
NVD
CVSS 2.0
3.6
EPSS
0.1%
CVE-2012-4453 LOW PATCH Monitor

dracut.sh in dracut, as used in Red Hat Enterprise Linux 6, Fedora 16 and 17, and possibly other products, creates initramfs images with world-readable permissions, which might allow local users to. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. This Incorrect Default Permissions vulnerability could allow attackers to access resources due to overly permissive default settings.

Red Hat Privilege Escalation Dracut Fedora Enterprise Linux Desktop +2
NVD
CVSS 2.0
2.1
EPSS
0.0%
EPSS 0% CVSS 3.6
LOW Monitor

modules.d/90crypt/module-setup.sh in the dracut package before 037-17.30.1 in openSUSE 13.2 allows local users to have unspecified impact via a symlink attack on /tmp/dracut_block_uuid.map. Rated low severity (CVSS 3.6), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Dracut
NVD
EPSS 0% CVSS 2.1
LOW PATCH Monitor

dracut.sh in dracut, as used in Red Hat Enterprise Linux 6, Fedora 16 and 17, and possibly other products, creates initramfs images with world-readable permissions, which might allow local users to. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. This Incorrect Default Permissions vulnerability could allow attackers to access resources due to overly permissive default settings.

Red Hat Privilege Escalation Dracut +4
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy