CVE-2017-9232 in Jujuinformation

Résumé

par MITRE

Juju before 1.25.12, 2.0.x before 2.0.4, and 2.1.x before 2.1.3 uses a UNIX domain socket without setting appropriate permissions, allowing privilege escalation by users on the system to root.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Réserver

24/05/2017

Divulgation

27/05/2017

Modérer

accepté

Entrée

VDB-101826

CPE

prêt

CWE

CWE-264 (confirmé)

Exploitation

Télécharger

CVSS

9.8 (NVD)

EPSS

0.48501

KEV

non

Activités

très faible

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2017-9232
NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-9232
CVE Details	https://www.cvedetails.com/cve/CVE-2017-9232/

◂ Précédent Aperçu Suivant ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!