CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2016-7490

The installation script studioexpressinstall for Teradata Studio Express 15.12.00.00 creates files in /tmp insecurely. A malicious local user could create a symlink in /tmp and possibly clobber system files or perhaps elevate privileges.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 12.1%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 7.2

References

http://www.securityfocus.com/bid/94255
http://www.vapidlabs.com/advisory.php?v=174
http://www.securityfocus.com/bid/94255
http://www.vapidlabs.com/advisory.php?v=174

Products affected by CVE-2016-7490

Teradata » Studio Express » Version: 15.12.00.00

cpe:2.3:a:teradata:studio_express:15.12.00.00

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-7490

Products

Pricing

Contact Us