Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2012-2653
HistoryJul 12, 2012 - 8:55 p.m.

CVE-2012-2653

2012-07-1220:55:15
[email protected]
web.nvd.nist.gov
150
cve
2012-2653
arpwatch
red hat
debian
fedora
root privileges
vulnerability
nvd

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

9.5 High

AI Score

Confidence

High

0.011 Low

EPSS

Percentile

84.7%

JSON

arpwatch 2.1a15, as used by Red Hat, Debian, Fedora, and possibly others, does not properly drop supplementary groups, which might allow attackers to gain root privileges by leveraging other vulnerabilities in the daemon.

Affected configurations

NVD
Node
lawrence_berkeley_national_laboratoryarpwatchMatch2.1a15

Related

nessus 10
openvas 12
fedora 3
nvd 1
debiancve 1
securityvulns 2
gentoo 1
debian 3
ubuntucve 1
prion 1
cvelist 1
cbl_mariner 1
ibm 1
nessus
nessus
Debian DSA-2481-1 : arpwatch - fails to drop supplementary groups
2012-06-29 00:00:00
Mandriva Linux Security Advisory : arpwatch (MDVSA-2012:113)
2012-09-06 00:00:00
Fedora 16 : arpwatch-2.1a15-18.fc16 (2012-8675)
2012-06-20 00:00:00
openvas
openvas
Fedora Update for arpwatch FEDORA-2012-8677
2012-08-30 00:00:00
Fedora Update for arpwatch FEDORA-2012-8675
2012-06-22 00:00:00
Debian: Security Advisory (DSA-2481-1)
2012-08-10 00:00:00
fedora
fedora
[SECURITY] Fedora 17 Update: arpwatch-2.1a15-20.fc17
2012-06-20 00:31:35
[SECURITY] Fedora 16 Update: arpwatch-2.1a15-18.fc16
2012-06-20 00:35:29
[SECURITY] Fedora 15 Update: arpwatch-2.1a15-16.fc15
2012-06-20 00:34:25
nvd
nvd
CVE-2012-2653
2012-07-12 20:55:15
debiancve
debiancve
CVE-2012-2653
2012-07-12 20:55:15
securityvulns
securityvulns
[SECURITY] [DSA 2481-1] arpwatch security update
2012-06-17 00:00:00
arpwatch protection bypass
2012-06-17 00:00:00
gentoo
gentoo
arpwatch: Privilege escalation
2016-07-20 00:00:00
debian
debian
[SECURITY] [DSA 2481-1] arpwatch security update
2012-06-02 12:50:29
[SECURITY] [DSA 2482-1] libgdata security update
2012-06-02 13:06:05
[SECURITY] [DSA 2482-1] arpwatch security update
2012-06-02 12:52:49
ubuntucve
ubuntucve
CVE-2012-2653
2012-07-12 00:00:00
prion
prion
Design/Logic Flaw
2012-07-12 20:55:00
cvelist
cvelist
CVE-2012-2653
2012-07-12 20:00:00
cbl_mariner
cbl_mariner
CVE-2012-2653 affecting package arpwatch 2.1a15-51
2024-07-08 03:08:43
ibm
ibm
Security Bulletin: WebSphere Cast Iron and App Connect Professional are affected by vulnerabilities in busybox, arpwatch, apr, acpid, augeas, firefox, ctdb.
2021-12-15 07:41:22

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

9.5 High

AI Score

Confidence

High

0.011 Low

EPSS

Percentile

84.7%

JSON
Related for CVE-2012-2653
nessus10openvas12fedora3nvd1debiancve1securityvulns2gentoo1debian3ubuntucve1prion1cvelist1cbl_mariner1ibm1