Powerpc-Utils Project: >> Powerpc-Utils Security Vulnerabilities
scripts/amsvis/powerpcAMS/amsnet.py in powerpc-utils-python uses the pickle Python module unsafely, which allows remote attackers to execute arbitrary code via a crafted serialized object.
CVSS Score
10.0
EPSS Score
0.053
Published
2015-02-19
snap in powerpc-utils 1.2.20 produces an archive with fstab and yaboot.conf files potentially containing cleartext passwords, and lacks a warning about reviewing this archive to detect included passwords, which might allow remote attackers to obtain sensitive information by leveraging access to a technical-support data stream.
CVSS Score
5.0
EPSS Score
0.002
Published
2014-06-17