CVE-2016-15024

LOW

2.5

Descricao

A vulnerability was found in doomsider shadow. It has been classified as problematic. Affected is an unknown function. The manipulation leads to denial of service. Attacking locally is a requirement. The complexity of an attack is rather high. The exploitability is told to be difficult. Continious delivery with rolling releases is used by this product. Therefore, no version details of affected nor updated releases are available. The patch is identified as 3332c5ba9ec3014ddc74e2147190a050eee97bc0. It is recommended to apply a patch to fix this issue. VDB-221478 is the identifier assigned to this vulnerability.

Detalhes CVE

Pontuacao CVSS v3.12.5

SeveridadeLOW

Vetor CVSSCVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L

Vetor de ataqueLOCAL

ComplexidadeHIGH

Privilegios necessariosLOW

Interacao do usuarioNONE

Publicado2/19/2023

Ultima modificacao11/21/2024

Fontenvd

Avistamentos honeypot0

Produtos afetados

doomsider_shadow_project:doomsider_shadow

Fraquezas (CWE)

CWE-404

Referencias

https://github.com/doomsider/shadow/commit/3332c5ba9ec3014ddc74e2147190a050eee97bc0(cna@vuldb.com)

https://vuldb.com/?ctiid.221478(cna@vuldb.com)

https://vuldb.com/?id.221478(cna@vuldb.com)

https://github.com/doomsider/shadow/commit/3332c5ba9ec3014ddc74e2147190a050eee97bc0(af854a3a-2127-422b-91ae-364da2661108)

https://vuldb.com/?ctiid.221478(af854a3a-2127-422b-91ae-364da2661108)

https://vuldb.com/?id.221478(af854a3a-2127-422b-91ae-364da2661108)

Correlacoes IOC

Sem correlacoes registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.