CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2010-2199

lib/fsm.c in RPM 4.8.0 and earlier does not properly reset the metadata of an executable file during replacement of the file in an RPM package upgrade or deletion of the file in an RPM package removal, which might allow local users to bypass intended access restrictions by creating a hard link to a vulnerable file that has a POSIX ACL, a related issue to CVE-2010-2059.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 14.1%

CVSS Severity

CVSS v2 Score 7.2

References

Products affected by CVE-2010-2199

Rpm » Rpm » Version: 1.2

cpe:2.3:a:rpm:rpm:1.2
Rpm » Rpm » Version: 1.3

cpe:2.3:a:rpm:rpm:1.3
Rpm » Rpm » Version: 1.3.1

cpe:2.3:a:rpm:rpm:1.3.1
Rpm » Rpm » Version: 1.4

cpe:2.3:a:rpm:rpm:1.4
Rpm » Rpm » Version: 1.4.1

cpe:2.3:a:rpm:rpm:1.4.1
Rpm » Rpm » Version: 1.4.2

cpe:2.3:a:rpm:rpm:1.4.2
Rpm » Rpm » Version: 1.4.2/a

cpe:2.3:a:rpm:rpm:1.4.2/a
Rpm » Rpm » Version: 1.4.3

cpe:2.3:a:rpm:rpm:1.4.3
Rpm » Rpm » Version: 1.4.4

cpe:2.3:a:rpm:rpm:1.4.4
Rpm » Rpm » Version: 1.4.5

cpe:2.3:a:rpm:rpm:1.4.5
Rpm » Rpm » Version: 1.4.6

cpe:2.3:a:rpm:rpm:1.4.6
Rpm » Rpm » Version: 1.4.7

cpe:2.3:a:rpm:rpm:1.4.7
Rpm » Rpm » Version: 2..4.10

cpe:2.3:a:rpm:rpm:2..4.10
Rpm » Rpm » Version: 2.0

cpe:2.3:a:rpm:rpm:2.0
Rpm » Rpm » Version: 2.0.1

cpe:2.3:a:rpm:rpm:2.0.1
Rpm » Rpm » Version: 2.0.10

cpe:2.3:a:rpm:rpm:2.0.10
Rpm » Rpm » Version: 2.0.11

cpe:2.3:a:rpm:rpm:2.0.11
Rpm » Rpm » Version: 2.0.2

cpe:2.3:a:rpm:rpm:2.0.2
Rpm » Rpm » Version: 2.0.3

cpe:2.3:a:rpm:rpm:2.0.3
Rpm » Rpm » Version: 2.0.4

cpe:2.3:a:rpm:rpm:2.0.4
Rpm » Rpm » Version: 2.0.5

cpe:2.3:a:rpm:rpm:2.0.5
Rpm » Rpm » Version: 2.0.6

cpe:2.3:a:rpm:rpm:2.0.6
Rpm » Rpm » Version: 2.0.7

cpe:2.3:a:rpm:rpm:2.0.7
Rpm » Rpm » Version: 2.0.8

cpe:2.3:a:rpm:rpm:2.0.8
Rpm » Rpm » Version: 2.0.9

cpe:2.3:a:rpm:rpm:2.0.9
Rpm » Rpm » Version: 2.1

cpe:2.3:a:rpm:rpm:2.1
Rpm » Rpm » Version: 2.1.1

cpe:2.3:a:rpm:rpm:2.1.1
Rpm » Rpm » Version: 2.1.2

cpe:2.3:a:rpm:rpm:2.1.2
Rpm » Rpm » Version: 2.2

cpe:2.3:a:rpm:rpm:2.2
Rpm » Rpm » Version: 2.2.1

cpe:2.3:a:rpm:rpm:2.2.1
Rpm » Rpm » Version: 2.2.10

cpe:2.3:a:rpm:rpm:2.2.10
Rpm » Rpm » Version: 2.2.11

cpe:2.3:a:rpm:rpm:2.2.11
Rpm » Rpm » Version: 2.2.2

cpe:2.3:a:rpm:rpm:2.2.2
Rpm » Rpm » Version: 2.2.3

cpe:2.3:a:rpm:rpm:2.2.3
Rpm » Rpm » Version: 2.2.3.10

cpe:2.3:a:rpm:rpm:2.2.3.10
Rpm » Rpm » Version: 2.2.3.11

cpe:2.3:a:rpm:rpm:2.2.3.11
Rpm » Rpm » Version: 2.2.4

cpe:2.3:a:rpm:rpm:2.2.4
Rpm » Rpm » Version: 2.2.5

cpe:2.3:a:rpm:rpm:2.2.5
Rpm » Rpm » Version: 2.2.6

cpe:2.3:a:rpm:rpm:2.2.6
Rpm » Rpm » Version: 2.2.7

cpe:2.3:a:rpm:rpm:2.2.7
Rpm » Rpm » Version: 2.2.8

cpe:2.3:a:rpm:rpm:2.2.8
Rpm » Rpm » Version: 2.2.9

cpe:2.3:a:rpm:rpm:2.2.9
Rpm » Rpm » Version: 2.3

cpe:2.3:a:rpm:rpm:2.3
Rpm » Rpm » Version: 2.3.1

cpe:2.3:a:rpm:rpm:2.3.1
Rpm » Rpm » Version: 2.3.2

cpe:2.3:a:rpm:rpm:2.3.2
Rpm » Rpm » Version: 2.3.3

cpe:2.3:a:rpm:rpm:2.3.3
Rpm » Rpm » Version: 2.3.4

cpe:2.3:a:rpm:rpm:2.3.4
Rpm » Rpm » Version: 2.3.5

cpe:2.3:a:rpm:rpm:2.3.5
Rpm » Rpm » Version: 2.3.6

cpe:2.3:a:rpm:rpm:2.3.6
Rpm » Rpm » Version: 2.3.7

cpe:2.3:a:rpm:rpm:2.3.7
Rpm » Rpm » Version: 2.3.8

cpe:2.3:a:rpm:rpm:2.3.8
Rpm » Rpm » Version: 2.3.9

cpe:2.3:a:rpm:rpm:2.3.9
Rpm » Rpm » Version: 2.4.1

cpe:2.3:a:rpm:rpm:2.4.1
Rpm » Rpm » Version: 2.4.11

cpe:2.3:a:rpm:rpm:2.4.11
Rpm » Rpm » Version: 2.4.12

cpe:2.3:a:rpm:rpm:2.4.12
Rpm » Rpm » Version: 2.4.2

cpe:2.3:a:rpm:rpm:2.4.2
Rpm » Rpm » Version: 2.4.3

cpe:2.3:a:rpm:rpm:2.4.3
Rpm » Rpm » Version: 2.4.4

cpe:2.3:a:rpm:rpm:2.4.4
Rpm » Rpm » Version: 2.4.5

cpe:2.3:a:rpm:rpm:2.4.5
Rpm » Rpm » Version: 2.4.6

cpe:2.3:a:rpm:rpm:2.4.6
Rpm » Rpm » Version: 2.4.8

cpe:2.3:a:rpm:rpm:2.4.8
Rpm » Rpm » Version: 2.4.9

cpe:2.3:a:rpm:rpm:2.4.9
Rpm » Rpm » Version: 2.5

cpe:2.3:a:rpm:rpm:2.5
Rpm » Rpm » Version: 2.5.1

cpe:2.3:a:rpm:rpm:2.5.1
Rpm » Rpm » Version: 2.5.2

cpe:2.3:a:rpm:rpm:2.5.2
Rpm » Rpm » Version: 2.5.3

cpe:2.3:a:rpm:rpm:2.5.3
Rpm » Rpm » Version: 2.5.4

cpe:2.3:a:rpm:rpm:2.5.4
Rpm » Rpm » Version: 2.5.5

cpe:2.3:a:rpm:rpm:2.5.5
Rpm » Rpm » Version: 2.5.6

cpe:2.3:a:rpm:rpm:2.5.6
Rpm » Rpm » Version: 2.6.7

cpe:2.3:a:rpm:rpm:2.6.7
Rpm » Rpm » Version: 3.0

cpe:2.3:a:rpm:rpm:3.0
Rpm » Rpm » Version: 3.0.1

cpe:2.3:a:rpm:rpm:3.0.1
Rpm » Rpm » Version: 3.0.2

cpe:2.3:a:rpm:rpm:3.0.2
Rpm » Rpm » Version: 3.0.3

cpe:2.3:a:rpm:rpm:3.0.3
Rpm » Rpm » Version: 3.0.4

cpe:2.3:a:rpm:rpm:3.0.4
Rpm » Rpm » Version: 3.0.5

cpe:2.3:a:rpm:rpm:3.0.5
Rpm » Rpm » Version: 3.0.6

cpe:2.3:a:rpm:rpm:3.0.6
Rpm » Rpm » Version: 4.0.

cpe:2.3:a:rpm:rpm:4.0.
Rpm » Rpm » Version: 4.0.1

cpe:2.3:a:rpm:rpm:4.0.1
Rpm » Rpm » Version: 4.0.2

cpe:2.3:a:rpm:rpm:4.0.2
Rpm » Rpm » Version: 4.0.3

cpe:2.3:a:rpm:rpm:4.0.3
Rpm » Rpm » Version: 4.0.4

cpe:2.3:a:rpm:rpm:4.0.4
Rpm » Rpm » Version: 4.1

cpe:2.3:a:rpm:rpm:4.1
Rpm » Rpm » Version: 4.3.3

cpe:2.3:a:rpm:rpm:4.3.3
Rpm » Rpm » Version: 4.4

cpe:2.3:a:rpm:rpm:4.4
Rpm » Rpm » Version: 4.4.1

cpe:2.3:a:rpm:rpm:4.4.1
Rpm » Rpm » Version: 4.4.2

cpe:2.3:a:rpm:rpm:4.4.2
Rpm » Rpm » Version: 4.4.2.1

cpe:2.3:a:rpm:rpm:4.4.2.1
Rpm » Rpm » Version: 4.4.2.2

cpe:2.3:a:rpm:rpm:4.4.2.2
Rpm » Rpm » Version: 4.4.2.3

cpe:2.3:a:rpm:rpm:4.4.2.3
Rpm » Rpm » Version: 4.5.90

cpe:2.3:a:rpm:rpm:4.5.90
Rpm » Rpm » Version: 4.6.0

cpe:2.3:a:rpm:rpm:4.6.0
Rpm » Rpm » Version: 4.6.1

cpe:2.3:a:rpm:rpm:4.6.1
Rpm » Rpm » Version: 4.7.0

cpe:2.3:a:rpm:rpm:4.7.0
Rpm » Rpm » Version: 4.7.1

cpe:2.3:a:rpm:rpm:4.7.1
Rpm » Rpm » Version: 4.7.2

cpe:2.3:a:rpm:rpm:4.7.2
Rpm » Rpm » Version: 4.8.0

cpe:2.3:a:rpm:rpm:4.8.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2010-2199

Products

Pricing

Contact Us