Magnicomp Sysinfo vulnerabilities
3 known vulnerabilities affecting magnicomp/sysinfo.
Total CVEs
3
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2017-6516P3MEDIUMCVSS 6.7PoC≤ 10-h622017-03-14
CVE-2017-6516 [MEDIUM] CWE-20 CVE-2017-6516: A Local Privilege Escalation Vulnerability in MagniComp's Sysinfo before 10-H64 for Linux and UNIX p
A Local Privilege Escalation Vulnerability in MagniComp's Sysinfo before 10-H64 for Linux and UNIX platforms could allow a local attacker to gain elevated privileges. Parts of SysInfo require setuid-to-root access in order to access restricted system files and make restricted kernel calls. This access could be exploited by a local attacker to gain a ro
nvd
CVE-2018-9310P3HIGHCVSS 7.8≥ 10-h76, ≤ 10-h812018-04-30
CVE-2018-9310 [HIGH] CVE-2018-9310: An issue was discovered in MagniComp SysInfo before 10-H82 if setuid root (the default). This vulner
An issue was discovered in MagniComp SysInfo before 10-H82 if setuid root (the default). This vulnerability allows any local user on a Linux/UNIX system to run SysInfo and obtain a root shell, which can be used to compromise the local system.
nvd
CVE-2018-7268P4MEDIUMCVSS 5.5fixed in 10-h812018-05-21
CVE-2018-7268 [MEDIUM] CWE-200 CVE-2018-7268: MagniComp SysInfo before 10-H81, as shipped with BMC BladeLogic Automation and other products, conta
MagniComp SysInfo before 10-H81, as shipped with BMC BladeLogic Automation and other products, contains an information exposure vulnerability in which a local unprivileged user is able to read any root (uid 0) owned file on the system, regardless of the file permissions. Confidential information such as password hashes (/etc/shadow) or other secrets (
nvd