2.1
CVE-2012-2679
- EPSS 0.39%
- Veröffentlicht 22.10.2012 23:55:05
- Zuletzt bearbeitet 16.06.2026 23:41:51
- Quelle secalert@redhat.com
- CVE-Watchlists
- Unerledigt
Red Hat Network (RHN) Configuration Client (rhncfg-client) in rhncfg before 5.10.27-8 uses weak permissions (world-readable) for /var/log/rhncfg-actions, which allows local users to obtain sensitive information about the rhncfg-client actions by reading the file.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.39% | 0.306 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 2.1 | 3.9 | 2.9 |
AV:L/AC:L/Au:N/C:P/I:N/A:N
|
http://rhn.redhat.com/errata/RHSA-2012-1369.html
http://secunia.com/advisories/50978
http://www.securityfocus.com/bid/55934
http://www.securitytracker.com/id?1027661
https://bugzilla.redhat.com/show_bug.cgi?id=825275
https://exchange.xforce.ibmcloud.com/vulnerabilities/79260