tuned 2.10.0 creates its PID file with insecure permissions which allows local users to kill arbitrary processes.
2019-11-20T15:15:11.100
2024-11-21T01:45:53.743
Modified
CVSSv3.1: 5.5 (MEDIUM)
AV:L/AC:L/Au:N/C:N/I:N/A:C
3.9
6.9
Type | Vendor | Product | Version/Range | Vulnerable? |
---|---|---|---|---|
Application | redhat | tuned | 2.10.0 | Yes |
Operating System | fedoraproject | fedora | 17 | Yes |
Operating System | redhat | enterprise_linux | 6.0 | Yes |
Operating System | redhat | enterprise_linux_desktop | 6.0 | Yes |
Operating System | redhat | enterprise_linux_server | 6.0 | Yes |
Operating System | redhat | enterprise_linux_workstation | 6.0 | Yes |
Operating System | debian | debian_linux | 10.0 | Yes |