2.1
CVE-2010-0750
- EPSS 0.47%
- Veröffentlicht 06.04.2010 16:30:00
- Zuletzt bearbeitet 16.06.2026 23:16:46
- Quelle secalert@redhat.com
- CVE-Watchlists
- Unerledigt
pkexec.c in pkexec in libpolkit in PolicyKit 0.96 allows local users to determine the existence of arbitrary files via the argument.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Freedesktop ≫ Policykit Version0.96
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.47% | 0.369 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 2.1 | 3.9 | 2.9 |
AV:L/AC:L/Au:N/C:P/I:N/A:N
|
CWE-200 Exposure of Sensitive Information to an Unauthorized Actor
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.
http://bugs.freedesktop.org/show_bug.cgi?id=26982
http://cgit.freedesktop.org/PolicyKit/commit/?id=14bdfd816512a82b1ad258fa143ae5faa945df8a
http://marc.info/?l=oss-security&m=127014095301235&w=2
http://marc.info/?l=oss-security&m=127014999113790&w=2
http://secunia.com/advisories/39149
http://secunia.com/advisories/48817
http://security.gentoo.org/glsa/glsa-201204-06.xml
https://exchange.xforce.ibmcloud.com/vulnerabilities/57543
https://launchpad.net/bugs/532852