CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2014-6311

generate_doygen.pl in ace before 6.2.7+dfsg-2 creates predictable file names in the /tmp directory which allows attackers to gain elevated privileges.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 65.2%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 5.0

References

http://www.openwall.com/lists/oss-security/2014/09/11/5
http://www.openwall.com/lists/oss-security/2014/09/12/6
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=760709
https://security-tracker.debian.org/tracker/CVE-2014-6311
http://www.openwall.com/lists/oss-security/2014/09/11/5
http://www.openwall.com/lists/oss-security/2014/09/12/6
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=760709
https://security-tracker.debian.org/tracker/CVE-2014-6311

Products affected by CVE-2014-6311

Vanderbilt » Adaptive Communication Environment » Version: 6.2.6

cpe:2.3:a:vanderbilt:adaptive_communication_environment:6.2.6
Vanderbilt » Adaptive Communication Environment » Version: 6.2.7

cpe:2.3:a:vanderbilt:adaptive_communication_environment:6.2.7
Debian » Debian Linux » Version: 10.0

cpe:2.3:o:debian:debian_linux:10.0
Debian » Debian Linux » Version: 8.0

cpe:2.3:o:debian:debian_linux:8.0
Debian » Debian Linux » Version: 9.0

cpe:2.3:o:debian:debian_linux:9.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2014-6311

Products

Pricing

Contact Us