7.1

CVE-2004-2778

EPSS 0.05%
Veröffentlicht 27.06.2017 20:29:00
Zuletzt bearbeitet 20.04.2025 01:37:25
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

Ebuild in Gentoo may change directory and file permissions depending on the order of installed packages, which allows local users to read or write to restricted directories or execute restricted commands via navigating to the affected directories, or executing the affected commands.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 0 Referenzen 9

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Gentoo ≫ Portage

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.05%	0.118

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.1	1.8	5.2	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
nvd@nist.gov	3.6	3.9	4.9	AV:L/AC:L/Au:N/C:P/I:P/A:N

http://www.openwall.com/lists/oss-security/2017/01/28/7

Third Party Advisory

Mailing List

https://bugs.gentoo.org/show_bug.cgi?id=141619

Vendor Advisory

https://bugs.gentoo.org/show_bug.cgi?id=396153

Vendor Advisory

https://bugs.gentoo.org/show_bug.cgi?id=58611

Vendor Advisory

https://bugs.gentoo.org/show_bug.cgi?id=607426

Vendor Advisory

https://bugs.gentoo.org/show_bug.cgi?id=607430

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2004-2778

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2004-2778

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2004-2778

EUVD