CVE-1999-0656CBL Mariner 1.0 ARM vulnerability

CWE-163 documents3 sources
Severity
5.0MEDIUMNVD
EPSS
0.2%
top 59.18%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Msrc CBL Mariner 1.0 ARMMsrc CBL Mariner 1.0 X64
Timeline
PublishedJan 1
Latest updateApr 30

Description

The ugidd RPC interface, by design, allows remote attackers to enumerate valid usernames by specifying arbitrary UIDs that ugidd maps to local user and group names.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages2 packages

🔴Vulnerability Details

1
GHSA
GHSA-75cj-jpmc-wm6c: The ugidd RPC interface, by design, allows remote attackers to enumerate valid usernames by specifying arbitrary UIDs that ugidd maps to local user an2022-04-30

📋Vendor Advisories

1
Microsoft
CVE-1999-0656: NIST NVD Details: https://nvd2020-09-08