CVE-2004-0667

3 documents3 sources

Severity

7.2HIGH

EPSS

0.2%

top 64.22%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Gentoo Linux Rsbac Rule SET Based Access Control

Timeline

PublishedAug 6

Latest updateApr 29

Description

Rule Set Based Access Control (RSBAC) 1.2.2 through 1.2.3 allows access to sys_creat, sys_open, and sys_mknod inside jails, which could allow local users to gain elevated privileges.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages2 packages

▶NVDrsbac/rule_set_based_access_control1.2.2, 1.2.3+1

▶NVDgentoo/linux1.4

Patches

Patch: www.securityfocus.com ↗Patch: www.securityfocus.com ↗

🔴Vulnerability Details

GHSA

GHSA-cmcm-62j3-r8fh: Rule Set Based Access Control (RSBAC) 1↗2022-04-29

▶

CVEList

CVE-2004-0667: Rule Set Based Access Control (RSBAC) 1↗2004-07-13

▶