Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
rpm rpm vulnerabilities and exploits
(subscribe to this query)
2.1
CVSSv2
CVE-2002-1672
Webmin 0.92, when installed from an RPM, creates /var/webmin with insecure permissions (world readable), which could allow local users to read the root user's cookie-based authentication credentials and possibly hijack the root user's session using the credentials.
Webmin Webmin 0.92
Webmin Webmin 0.92.1
7.2
CVSSv2
CVE-2001-0923
RPM Package Manager 4.0.x up to and including 4.0.2.x allows an malicious user to execute arbitrary code via corrupted data in the RPM file when the file is queried.
Redhat Redhat Package Manager 4.0.2-71
Redhat Redhat Package Manager 4.0.2-72
6.2
CVSSv2
CVE-2000-0722
Helix GNOME Updater helix-update 0.5 and previous versions allows local users to install arbitrary RPM packages by creating the /tmp/helix-install installation directory before root has begun installing packages.
Helix Code Gnome Updater 0.4
Helix Code Gnome Updater 0.3
Helix Code Gnome Updater 0.1
Helix Code Gnome Updater 0.2
Helix Code Gnome Updater 0.5
1.2
CVSSv2
CVE-2000-0718
A race condition in MandrakeUpdate allows local users to modify RPM files while they are in the /tmp directory before they are installed.
Mandrakesoft Mandrake Linux 6.0
Mandrakesoft Mandrake Linux 7.0
Mandrakesoft Mandrake Linux 6.1
Mandrakesoft Mandrake Linux 7.1
2.1
CVSSv2
CVE-1999-0862
Insecure directory permissions in RPM distribution for PostgreSQL allows local users to gain privileges by reading a plaintext password file.
Postgresql Postgresql 6.3.2
Postgresql Postgresql 6.5.3.1
Postgresql Postgresql 6.5.3
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
bypass
open redirect
CVE-2024-4358
CVE-2024-24199
CVE-2024-5550
CVE-2024-5305
CVE-2024-30373
CVE-2024-1800
deserialization
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10