CVE-2017-18285 in Burpinformation

Résumé

par MITRE

The Gentoo app-backup/burp package before 2.1.32 has incorrect group ownership of the /etc/burp directory, which might allow local users to obtain read and write access to arbitrary files by leveraging access to a certain account for a burp-server.conf change.

Once again VulDB remains the best source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Réserver

03/06/2018

Divulgation

04/06/2018

Modérer

accepté

Entrée

VDB-118809

CPE

prêt

CWE

CWE-264 (confirmé)

CVSS

7.1 (NVD)

EPSS

0.00040

KEV

non

Activités

très faible

Secteur

Telecommunication, Insurance, ...

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2017-18285
NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-18285
CVE Details	https://www.cvedetails.com/cve/CVE-2017-18285/

◂ Précédent Aperçu Suivant ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!