7.2
CVE-2007-0536
- EPSS 0.36%
- Veröffentlicht 27.01.2007 00:28:00
- Zuletzt bearbeitet 16.06.2026 22:35:46
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
The chroot helper in rMake for rPath Linux 1 does not drop supplemental groups, which causes packages to be installed with insecure permissions and might allow local users to gain privileges.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Rpath ≫ Rpath Linux Version1
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.36% | 0.274 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.2 | 3.9 | 10 |
AV:L/AC:L/Au:N/C:C/I:C/A:C
|
http://lists.rpath.com/pipermail/security-announce/2007-January/000137.html
http://osvdb.org/32972
http://secunia.com/advisories/23922
https://exchange.xforce.ibmcloud.com/vulnerabilities/31942
https://issues.rpath.com/browse/RPL-987