PT-2019-1891 · Microsoft+4 · Azure Windows Azure Linux Agent+4

Publicado

2019-02-28

Atualizado

2020-08-24

CVE-2019-0804

CVSS v3.1

6.5

Média

Vetor

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Azure Windows Azure Linux Agent (affected versions not specified)

Description An information disclosure issue exists due to improper permission assignment for swap files by the Azure WaLinuxAgent. This could allow a remote attacker to gain unauthorized access to information by reading swap files as an arbitrary user.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Incorrect Permission

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-732

Identificadores relacionados

BDU:2019-01545

CESA-2019_1527

CVE-2019-0804

DLA-1709-1

DSA-4406-1

OPENSUSE-SU-2019:1106-1

OPENSUSE-SU-2019_1106-1

OPENSUSE-SU-2020:0261-1

OPENSUSE-SU-2020_0261-1

OPENSUSE-SU-2024:11217-1

RHSA-2019:1527

RHSA-2019_1527

SUSE-SU-2019:0603-1

SUSE-SU-2019:3393-1

SUSE-SU-2019:3394-1

SUSE-SU-2019_0603-1

SUSE-SU-2019_3393-1

SUSE-SU-2019_3394-1

SUSE-SU-2020:0440-1

SUSE-SU-2020:14454-1

SUSE-SU-2020_0440-1

SUSE-SU-2020_14454-1

USN-3907-1

Produtos afetados

Azure Windows Azure Linux Agent

Centos

Red Hat

Suse

Ubuntu

PT-2019-1891 · Microsoft+4 · Azure Windows Azure Linux Agent+4

CVE-2019-0804

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 62