4.9
CVE-2014-7298
- EPSS 0.06%
- Veröffentlicht 24.10.2014 10:55:05
- Zuletzt bearbeitet 12.04.2025 10:46:40
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Loginadsetgroups in Centrify Server Suite 2008 through 2014.1 and Centrify DirectControl 3.x through 4.2.0 on Linux and UNIX allows local users to read arbitrary files with root privileges by leveraging improperly protected setuid functionality.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Centrify ≫ Directcontrol Version3.0
Centrify ≫ Directcontrol Version4.2.0
Centrify ≫ Centrify Suite Version2008
Centrify ≫ Centrify Suite Version2012
Centrify ≫ Centrify Suite Version2012.5
Centrify ≫ Centrify Suite Version2014.1
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.06% | 0.141 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 4.9 | 3.9 | 6.9 |
AV:L/AC:L/Au:N/C:C/I:N/A:N
|