CVE-2001-0635 — Redhat Linux vulnerability

5 documents5 sources

Severity

4.6MEDIUMNVD

EPSS

0.1%

top 84.69%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Redhat Linux

Timeline

PublishedAug 14

Latest updateApr 30

Description

Red Hat Linux 7.1 sets insecure permissions on swap files created during installation, which can allow a local attacker to gain additional privileges by reading sensitive information from the swap file, such as passwords.

CVSS vector

AV:L/AC:L/C:P/I:P/A:PExploitability: 3.9 | Impact: 6.4

Affected Packages1 packages

▶NVDredhat/linux7.1

Patches

Patch: www.redhat.com ↗Patch: www.redhat.com ↗

🔴Vulnerability Details

GHSA

GHSA-432r-vhq4-vhjx: Red Hat Linux 7↗2022-04-30

▶

CVEList

CVE-2001-0635: Red Hat Linux 7↗2002-03-09

▶

📋Vendor Advisories

Red Hat

security flaw↗2001-05-02

▶

💬Community

Bugzilla

CVE-2001-0635 security flaw↗2018-08-16

▶