Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog About Contact

abrt vulnerabilities and exploits

(subscribe to this query)
7
CVSSv3

CVE-2015-1862

The crash reporting feature in Abrt allows local users to gain privileges by leveraging an execve by root after a chroot into a user-specified directory in a namedspaced environment.
Abrt Project Abrt
7.5
CVSSv3

CVE-2011-4088

ABRT might allow malicious users to obtain sensitive information from crash reports.
Abrt AbrtAbrt Project Abrt 2.0.6Fedoraproject Fedora 16Redhat Enterprise Linux Desktop 6.0Redhat Enterprise Linux Server 6.0Redhat Enterprise Linux Workstation 6.0
7.1
CVSSv3

CVE-2015-3150

abrt-dbus in Automatic Bug Reporting Tool (ABRT) allows local users to delete or change the ownership of arbitrary files via the problem directory argument to the (1) ChownProblemDir, (2) DeleteElement, or (3) DeleteProblem method.
Abrt AbrtRedhat Automatic Bug Reporting Tool -
7.8
CVSSv3

CVE-2015-3151

Directory traversal vulnerability in abrt-dbus in Automatic Bug Reporting Tool (ABRT) allows local users to read, write to, or change ownership of arbitrary files via unspecified vectors to the (1) NewProblem, (2) GetInfo, (3) SetElement, or (4) DeleteElement method.
Abrt AbrtRedhat Automatic Bug Reporting Tool -
7.8
CVSSv3

CVE-2015-3159

The abrt-action-install-debuginfo-to-abrt-cache help program in Automatic Bug Reporting Tool (ABRT) does not properly handle the process environment before invoking abrt-action-install-debuginfo, which allows local users to gain privileges.
Abrt AbrtRedhat Automatic Bug Reporting Tool -
7.8
CVSSv3

CVE-2015-1869

The default event handling scripts in Automatic Bug Reporting Tool (ABRT) allow local users to gain privileges as demonstrated by a symlink attack on a var_log_messages file.
Abrt AbrtRedhat Automatic Bug Reporting Tool -
6.5
CVSSv3

CVE-2015-3147

daemon/abrt-handle-upload.in in Automatic Bug Reporting Tool (ABRT), when moving problem reports from /var/spool/abrt-upload, allows local users to write to arbitrary files or possibly have other unspecified impact via a symlink attack on (1) /var/spool/abrt or (2) /var/tmp/abrt.
Abrt AbrtRedhat Automatic Bug Reporting Tool -Redhat Enterprise Linux Desktop 7.0Redhat Enterprise Linux Server 7.0Redhat Enterprise Linux Server Aus 7.3Redhat Enterprise Linux Server Aus 7.4Redhat Enterprise Linux Server Aus 7.6Redhat Enterprise Linux Server Aus 7.7Redhat Enterprise Linux Server Eus 7.1Redhat Enterprise Linux Server Eus 7.2Redhat Enterprise Linux Server Eus 7.3Redhat Enterprise Linux Server Eus 7.4
7.2
CVSSv2

CVE-2015-1318

The crash reporting feature in Apport 2.13 up to and including 2.17.x prior to 2.17.1 allows local users to gain privileges via a crafted usr/share/apport/apport file in a namespace (container).
Apport Project Apport 2.13Apport Project Apport 2.13.1Apport Project Apport 2.13.2Apport Project Apport 2.13.3Apport Project Apport 2.14Apport Project Apport 2.14.1Apport Project Apport 2.14.2Apport Project Apport 2.14.3Apport Project Apport 2.14.4Apport Project Apport 2.14.5Apport Project Apport 2.14.6Apport Project Apport 2.14.7
3.7
CVSSv2

CVE-2012-5659

Untrusted search path vulnerability in plugins/abrt-action-install-debuginfo-to-abrt-cache.c in Automatic Bug Reporting Tool (ABRT) 2.0.9 and previous versions allows local users to load and execute arbitrary Python modules by modifying the PYTHONPATH environment variable to refe...
Redhat Automatic Bug Reporting ToolRedhat Automatic Bug Reporting Tool 2.0.0Redhat Automatic Bug Reporting Tool 2.0.1Redhat Automatic Bug Reporting Tool 2.0.2Redhat Automatic Bug Reporting Tool 2.0.3Redhat Automatic Bug Reporting Tool 2.0.4Redhat Automatic Bug Reporting Tool 2.0.4.980Redhat Automatic Bug Reporting Tool 2.0.4.981Redhat Automatic Bug Reporting Tool 2.0.5Redhat Automatic Bug Reporting Tool 2.0.6Redhat Automatic Bug Reporting Tool 2.0.7Redhat Automatic Bug Reporting Tool 2.0.8
6.9
CVSSv2

CVE-2012-5660

abrt-action-install-debuginfo in Automatic Bug Reporting Tool (ABRT) 2.0.9 and previous versions allows local users to set world-writable permissions for arbitrary files and possibly gain privileges via a symlink attack on "the directories used to store information about cra...
Redhat Automatic Bug Reporting ToolRedhat Automatic Bug Reporting Tool 2.0.0Redhat Automatic Bug Reporting Tool 2.0.1Redhat Automatic Bug Reporting Tool 2.0.2Redhat Automatic Bug Reporting Tool 2.0.3Redhat Automatic Bug Reporting Tool 2.0.4Redhat Automatic Bug Reporting Tool 2.0.4.980Redhat Automatic Bug Reporting Tool 2.0.4.981Redhat Automatic Bug Reporting Tool 2.0.5Redhat Automatic Bug Reporting Tool 2.0.6Redhat Automatic Bug Reporting Tool 2.0.7Redhat Automatic Bug Reporting Tool 2.0.8
Preferred Score:
CVSSv3
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
CVE-2025-49820firefoxnet/httpCVE-2025-49816konsolefile inclusionCVE-2025-33053theeventscalendarCVE-2025-49822CVE-2025-3052XXEHTML injectionCVE-2025-5959
Home
/
Search Results
Vulmon Logo Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook