CVE-2018-12027Sensitive Information Exposure in Passenger

CWE-200Sensitive Information ExposureCWE-732Incorrect Permission AssignmentCWE-284Improper Access Control8 documents7 sources
Severity
8.8HIGHNVD
EPSS
0.3%
top 49.02%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Phusion Passenger
Timeline
PublishedJun 17
Latest updateMay 13

Description

An Insecure Permissions vulnerability in SpawningKit in Phusion Passenger 5.3.x before 5.3.2 causes information disclosure in the following situation: given a Passenger-spawned application process that reports that it listens on a certain Unix domain socket, if any of the parent directories of said socket are writable by a normal user that is not the application's user, then that non-application user can swap that directory with something else, resulting in traffic being redirected to a non-appl

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages3 packages

NVDphusion/passenger5.3.05.3.2
RubyGemsphusion/passenger5.3.05.3.2
Ubuntuphusion/passenger< 6.0.10-3build1

🔴Vulnerability Details

4
OSV
Insecure Permissions in Phusion Passenger2022-05-13
GHSA
Insecure Permissions in Phusion Passenger2022-05-13
OSV
CVE-2018-12027: An Insecure Permissions vulnerability in SpawningKit in Phusion Passenger 52018-06-17
CVEList
CVE-2018-12027: An Insecure Permissions vulnerability in SpawningKit in Phusion Passenger 52018-06-17

📋Vendor Advisories

2
Red Hat
passenger: Insecure permissions in SpawningKit can allow for redirection of traffic under certain configurations2018-06-05
Debian
CVE-2018-12027: passenger - An Insecure Permissions vulnerability in SpawningKit in Phusion Passenger 5.3.x ...2018

💬Community

1
Bugzilla
CVE-2018-12027 passenger: Insecure permissions in SpawningKit can allow for redirection of traffic under certain configurations2018-06-19
CVE-2018-12027 — Sensitive Information Exposure | cvebase