Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2015-3150

abrt-dbus in Automatic Bug Reporting Tool (ABRT) allows local users to delete or change the ownership of arbitrary files via the problem directory argument to the (1) ChownProblemDir, (2) DeleteElement, or (3) DeleteProblem method.

Published

2020-01-14T18:15:10.667

Last Modified

2024-11-21T02:28:46.840

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.1 (HIGH)

CVSSv2 Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Access Vector: LOCAL
Access Complexity: LOW
Authentication: NONE
Confidentiality Impact: COMPLETE
Integrity Impact: COMPLETE
Availability Impact: COMPLETE

Exploitability Score

3.9

Impact Score

10.0

Weaknesses

Type: Primary
CWE-20

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	redhat	automatic_bug_reporting_tool	-	Yes

References

https://bugzilla.redhat.com/show_bug.cgi?id=1214457 Issue Tracking, Third Party Advisory ([email protected])
https://github.com/abrt/abrt/commit/6e811d78e2719988ae291181f5b133af32ce62d8 Patch, Third Party Advisory ([email protected])
https://github.com/abrt/abrt/commit/7814554e0827ece778ca88fd90832bd4d05520b1 Patch, Third Party Advisory ([email protected])
https://github.com/abrt/abrt/commit/b7f8bd20b7fb5b72f003ae3fa647c1d75f4218b7 Patch, Third Party Advisory ([email protected])
https://github.com/abrt/libreport/commit/1951e7282043dfe1268d492aea056b554baedb75 Patch, Third Party Advisory ([email protected])
https://bugzilla.redhat.com/show_bug.cgi?id=1214457 Issue Tracking, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://github.com/abrt/abrt/commit/6e811d78e2719988ae291181f5b133af32ce62d8 Patch, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://github.com/abrt/abrt/commit/7814554e0827ece778ca88fd90832bd4d05520b1 Patch, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://github.com/abrt/abrt/commit/b7f8bd20b7fb5b72f003ae3fa647c1d75f4218b7 Patch, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://github.com/abrt/libreport/commit/1951e7282043dfe1268d492aea056b554baedb75 Patch, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)