Vulnerability Details CVE-2014-7301
SGI Tempo, as used on SGI ICE-X systems, uses weak permissions for certain files, which allows local users to obtain password hashes and possibly other unspecified sensitive information by reading /etc/odapw.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 32.7%
CVSS Severity
CVSS v3 Score 6.6
CVSS v2 Score 4.6
References
- https://labs.f-secure.com/advisories/sgi-tempo-system-database-password-exposure/
- https://packetstormsecurity.com/files/129466/SGI-Tempo-Database-Password-Disclosure.html
- https://labs.f-secure.com/advisories/sgi-tempo-system-database-password-exposure/
- https://packetstormsecurity.com/files/129466/SGI-Tempo-Database-Password-Disclosure.html