Security Vulnerabilities - CVEs Published In April 2019
Gila CMS 1.10.1 allows fm/save CSRF for executing arbitrary PHP code.
CVSS Score
8.8
EPSS Score
0.002
Published
2019-04-22
It was found that default configuration of Heketi does not require any authentication potentially exposing the management interface to misuse. This isue only affects heketi as shipped with Openshift Container Platform 3.11.
CVSS Score
7.3
EPSS Score
0.004
Published
2019-04-22
A race condition in perf_event_open() allows local attackers to leak sensitive data from setuid programs. As no relevant locks (in particular the cred_guard_mutex) are held during the ptrace_may_access() call, it is possible for the specified target task to perform an execve() syscall with setuid execution before perf_event_alloc() actually attaches to it, allowing an attacker to bypass the ptrace_may_access() check and the perf_event_exit_task(current) call that is performed in install_exec_creds() during privileged execve() calls. This issue affects kernel versions before 4.8.
CVSS Score
5.6
EPSS Score
0.001
Published
2019-04-22
A flaw was found in Mercurial before 4.9. It was possible to use symlinks and subrepositories to defeat Mercurial's path-checking logic and write files outside a repository.
CVSS Score
5.1
EPSS Score
0.008
Published
2019-04-22
A potential vulnerability was found in an SMI handler in various BIOS versions of certain legacy IBM System x and IBM BladeCenter systems that could lead to denial of service.
CVSS Score
4.1
EPSS Score
0.001
Published
2019-04-22
Ekiga versions before 3.3.0 attempted to load a module from /tmp/ekiga_test.so.
CVSS Score
5.7
EPSS Score
0.002
Published
2019-04-22
When mount.ecrpytfs_private before version 87-0ubuntu1.2 calls setreuid() it doesn't also set the effective group id. So when it creates the new version, mtab.tmp, it's created with the group id of the user running mount.ecryptfs_private.
CVSS Score
3.8
EPSS Score
0.002
Published
2019-04-22
Versions of nova before 2012.1 could expose hypervisor host files to a guest operating system when processing a maliciously constructed qcow filesystem.
CVSS Score
2.8
EPSS Score
0.002
Published
2019-04-22
The Ubuntu SELinux initscript before version 1:0.10 used touch to create a lockfile in a world-writable directory. If the OS kernel does not have symlink protections then an attacker can cause a zero byte file to be allocated on any writable filesystem.
CVSS Score
5.2
EPSS Score
0.002
Published
2019-04-22
A vulnerability in maasserver.api.get_file_by_name of Ubuntu MAAS allows unauthenticated network clients to download any file. This issue affects: Ubuntu MAAS versions prior to 1.9.2.
CVSS Score
8.6
EPSS Score
0.007
Published
2019-04-22