Skip to main content

Ppc64 Diag

2 CVEs product

Monthly

CVE-2014-4039 LOW Monitor

ppc64-diag 2.6.1 uses 0775 permissions for /tmp/diagSEsnap and does not properly restrict permissions for /tmp/diagSEsnap/snapH.tar.gz, which allows local users to obtain sensitive information by. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Enterprise Linux Server Ppc64 Diag Linux Enterprise Server
NVD
CVSS 2.0
2.1
EPSS
0.1%
CVE-2014-4038 MEDIUM This Month

ppc64-diag 2.6.1 allows local users to overwrite arbitrary files via a symlink attack related to (1) rtas_errd/diag_support.c and /tmp/get_dt_files, (2) scripts/ppc64_diag_mkrsrc and. Rated medium severity (CVSS 4.4). No vendor patch available.

Information Disclosure Linux Enterprise Server Ppc64 Diag Enterprise Linux Server
NVD
CVSS 2.0
4.4
EPSS
0.1%
EPSS 0% CVSS 2.1
LOW Monitor

ppc64-diag 2.6.1 uses 0775 permissions for /tmp/diagSEsnap and does not properly restrict permissions for /tmp/diagSEsnap/snapH.tar.gz, which allows local users to obtain sensitive information by. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Enterprise Linux Server Ppc64 Diag +1
NVD
EPSS 0% CVSS 4.4
MEDIUM This Month

ppc64-diag 2.6.1 allows local users to overwrite arbitrary files via a symlink attack related to (1) rtas_errd/diag_support.c and /tmp/get_dt_files, (2) scripts/ppc64_diag_mkrsrc and. Rated medium severity (CVSS 4.4). No vendor patch available.

Information Disclosure Linux Enterprise Server Ppc64 Diag +1
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy