Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
8.8
CVSSv3

CVE-2015-1326

Published: 22/04/2019 Updated: 09/10/2019
CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6
CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8
VMScore: 828
Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Subscribe to Python-dbusmock

Vulnerability Summary

It exists that python-dbusmock incorrectly handled template loading from shared directories. A local attacker could possibly use this issue to execute arbitrary code.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

python-dbusmock project python-dbusmock

Vendor Advisories

Debian CVElist Bug Report Logs: [CVE-2015-1326] python-dbusmock: arbitrary code execution or file overwrite when templates are loaded from /tmp
Debian Bug report logs - #786858 [CVE-2015-1326] python-dbusmock: arbitrary code execution or file overwrite when templates are loaded from /tmp Package: python3-dbusmock; Maintainer for python3-dbusmock is Debian Python Modules Team <python-modules-team@listsaliothdebianorg>; Source for python3-dbusmock is src:python-dbusmock (P ...
Ubuntu Security Notice: python-dbusmock vulnerability
python-dbusmock could be tricked into running arbitrary programs ...

References

CWE-20https://github.com/martinpitt/python-dbusmock/commit/4e7d0df9093https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=786858https://usn.ubuntu.com/2618-1/https://nvd.nist.gov
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4671unauthorizedCVE-2024-4776CVE-2024-3407CVE-2024-26026CVE-2024-32888wirelessCVE-2024-4656template injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook