Vulnerability Details CVE-2012-4453
dracut.sh in dracut, as used in Red Hat Enterprise Linux 6, Fedora 16 and 17, and possibly other products, creates initramfs images with world-readable permissions, which might allow local users to obtain sensitive information.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 10.8%
CVSS Severity
CVSS v2 Score 2.1
References
- http://git.kernel.org/?p=boot/dracut/dracut.git%3Ba=commit%3Bh=e1b48995c26c4f06d1a71
- http://rhn.redhat.com/errata/RHSA-2013-1674.html
- http://www.openwall.com/lists/oss-security/2012/09/27/3
- http://www.openwall.com/lists/oss-security/2012/09/27/4
- http://www.openwall.com/lists/oss-security/2012/09/27/6
- http://www.securityfocus.com/bid/55713
- https://bugzilla.redhat.com/show_bug.cgi?id=859448
- https://exchange.xforce.ibmcloud.com/vulnerabilities/79258
- http://git.kernel.org/?p=boot/dracut/dracut.git%3Ba=commit%3Bh=e1b48995c26c4f06d1a71
- http://rhn.redhat.com/errata/RHSA-2013-1674.html
- http://www.openwall.com/lists/oss-security/2012/09/27/3
- http://www.openwall.com/lists/oss-security/2012/09/27/4
- http://www.openwall.com/lists/oss-security/2012/09/27/6
- http://www.securityfocus.com/bid/55713
- https://bugzilla.redhat.com/show_bug.cgi?id=859448
- https://exchange.xforce.ibmcloud.com/vulnerabilities/79258
Products affected by CVE-2012-4453
-
cpe:2.3:a:dracut_project:dracut:-
-
cpe:2.3:a:dracut_project:dracut:0.1
-
cpe:2.3:a:dracut_project:dracut:0.2
-
cpe:2.3:a:dracut_project:dracut:0.3
-
cpe:2.3:a:dracut_project:dracut:0.4
-
cpe:2.3:a:dracut_project:dracut:0.5
-
cpe:2.3:a:dracut_project:dracut:0.6
-
cpe:2.3:a:dracut_project:dracut:0.7
-
cpe:2.3:a:dracut_project:dracut:0.8
-
cpe:2.3:a:dracut_project:dracut:0.9
-
cpe:2.3:a:dracut_project:dracut:001
-
cpe:2.3:a:dracut_project:dracut:002
-
cpe:2.3:a:dracut_project:dracut:003
-
cpe:2.3:a:dracut_project:dracut:004
-
cpe:2.3:a:dracut_project:dracut:005
-
cpe:2.3:a:dracut_project:dracut:006
-
cpe:2.3:a:dracut_project:dracut:007
-
cpe:2.3:a:dracut_project:dracut:008
-
cpe:2.3:a:dracut_project:dracut:009
-
cpe:2.3:a:dracut_project:dracut:010
-
cpe:2.3:a:dracut_project:dracut:011
-
cpe:2.3:a:dracut_project:dracut:012
-
cpe:2.3:a:dracut_project:dracut:013
-
cpe:2.3:a:dracut_project:dracut:014
-
cpe:2.3:a:dracut_project:dracut:015
-
cpe:2.3:a:dracut_project:dracut:016
-
cpe:2.3:a:dracut_project:dracut:017
-
cpe:2.3:a:dracut_project:dracut:018
-
cpe:2.3:a:dracut_project:dracut:019
-
cpe:2.3:a:dracut_project:dracut:020
-
cpe:2.3:a:dracut_project:dracut:021
-
cpe:2.3:a:dracut_project:dracut:022
-
cpe:2.3:a:dracut_project:dracut:023
-
cpe:2.3:o:fedoraproject:fedora:16
-
cpe:2.3:o:fedoraproject:fedora:17
-
cpe:2.3:o:redhat:enterprise_linux_desktop:6.0
-
cpe:2.3:o:redhat:enterprise_linux_server:6.0
-
cpe:2.3:o:redhat:enterprise_linux_workstation:6.0