Published: 09/04/2019 Updated: 24/08/2020

CVSS v2 Base Score: 4 | Impact Score: 2.9 | Exploitability Score: 8

CVSS v3 Base Score: 6.5 | Impact Score: 3.6 | Exploitability Score: 2.8

VMScore: 356

Vector: AV:N/AC:L/Au:S/C:P/I:N/A:N

It exists that WALinuxAgent created swap files with incorrect permissions. A local attacker could possibly use this issue to obtain sensitive information from the swap file.

Vulnerable Product	Search on Vulmon	Subscribe to Product
microsoft walinuxagent

Synopsis Moderate: WALinuxAgent security update Type/Severity Security Advisory: Moderate Topic An update for WALinuxAgent is now available for Red Hat Enterprise Linux 8Red Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) base ...

WALinuxAgent could be made to expose sensitive information ...

Francis McBratney discovered that the Windows Azure Linux Agent created swap files with world-readable permissions, resulting in information disclosure For the stable distribution (stretch), this problem has been fixed in version 2218-3~deb9u2 We recommend that you upgrade your waagent packages For the detailed security status of waagent pleas ...

CWE-732 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0804 https://access.redhat.com/errata/RHSA-2019:1527 http://lists.opensuse.org/opensuse-security-announce/2020-02/msg00037.html https://access.redhat.com/errata/RHSA-2019:1527 https://usn.ubuntu.com/3907-1/https://nvd.nist.gov

CVE-2019-0804

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect