2.1
CVE-2012-3457
- EPSS 0.34%
- Veröffentlicht 12.08.2012 00:55:00
- Zuletzt bearbeitet 16.06.2026 23:43:15
- Quelle secalert@redhat.com
- CVE-Watchlists
- Unerledigt
PNP4Nagios 0.6 through 0.6.16 uses world-readable permissions for process_perfdata.cfg, which allows local users to obtain the Gearman shared secret by reading the file.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Pnp4nagios ≫ Pnp4nagios Version0.6.0
Pnp4nagios ≫ Pnp4nagios Version0.6.1
Pnp4nagios ≫ Pnp4nagios Version0.6.2
Pnp4nagios ≫ Pnp4nagios Version0.6.3
Pnp4nagios ≫ Pnp4nagios Version0.6.4
Pnp4nagios ≫ Pnp4nagios Version0.6.5
Pnp4nagios ≫ Pnp4nagios Version0.6.6
Pnp4nagios ≫ Pnp4nagios Version0.6.7
Pnp4nagios ≫ Pnp4nagios Version0.6.10
Pnp4nagios ≫ Pnp4nagios Version0.6.11
Pnp4nagios ≫ Pnp4nagios Version0.6.12
Pnp4nagios ≫ Pnp4nagios Version0.6.13
Pnp4nagios ≫ Pnp4nagios Version0.6.14
Pnp4nagios ≫ Pnp4nagios Version0.6.15
Pnp4nagios ≫ Pnp4nagios Version0.6.16
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.34% | 0.258 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 2.1 | 3.9 | 2.9 |
AV:L/AC:L/Au:N/C:P/I:N/A:N
|
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=683879
http://lists.fedoraproject.org/pipermail/package-announce/2012-September/086161.html
http://lists.fedoraproject.org/pipermail/package-announce/2012-September/086387.html
http://www.openwall.com/lists/oss-security/2012/08/06/7
http://www.openwall.com/lists/oss-security/2012/08/06/8
http://www.securityfocus.com/bid/54863