Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2016-6224
HistoryJul 22, 2016 - 2:59 p.m.

CVE-2016-6224

2016-07-2214:59:01
CWE-20
mitre
web.nvd.nist.gov
23
4
cve-2016-6224
ecryptfs
encryption
swap partition
gpt partitioning
nvme
mmc
incomplete fix
information security

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

CVSS3

3.3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

AI Score

3.3

Confidence

High

EPSS

0

Percentile

5.1%

JSON

ecryptfs-setup-swap in eCryptfs does not prevent the unencrypted swap partition from activating during boot when using GPT partitioning on a (1) NVMe or (2) MMC drive, which allows local users to obtain sensitive information via unspecified vectors. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-8946.

Affected configurations

Nvd
Node
ecryptfsecryptfs-utilsRange110
Node
canonicalubuntu_linuxMatch14.04lts
OR
canonicalubuntu_linuxMatch15.10
VendorProductVersionCPE
ecryptfsecryptfs-utils*cpe:2.3:a:ecryptfs:ecryptfs-utils:*:*:*:*:*:*:*:*
canonicalubuntu_linux14.04cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
canonicalubuntu_linux15.10cpe:2.3:o:canonical:ubuntu_linux:15.10:*:*:*:*:*:*:*

Social References

More

Related

prion 2
nessus 5
ubuntucve 2
redhatcve 1
cvelist 2
debiancve 2
openvas 4
nvd 2
fedora 2
ubuntu 1
cve 1
prion
prion
Design/Logic Flaw
2016-07-22 14:59:00
Information disclosure
2016-07-22 14:59:00
nessus
nessus
Fedora 24 : ecryptfs-utils (2016-41301e2187)
2016-07-20 00:00:00
SUSE SLED12 / SLES12 Security Update : ecryptfs-utils (SUSE-SU-2018:0336-1)
2018-02-02 00:00:00
Fedora 23 : ecryptfs-utils (2016-70b5173c05)
2016-11-03 00:00:00
ubuntucve
ubuntucve
CVE-2016-6224
2016-07-22 00:00:00
CVE-2015-8946
2016-07-22 00:00:00
redhatcve
redhatcve
CVE-2016-6224
2016-07-15 07:18:12
cvelist
cvelist
CVE-2016-6224
2016-07-22 14:00:00
CVE-2015-8946
2016-07-22 14:00:00
debiancve
debiancve
CVE-2016-6224
2016-07-22 14:59:01
CVE-2015-8946
2016-07-22 14:59:00
openvas
openvas
Fedora Update for ecryptfs-utils FEDORA-2016-70b5173c05
2016-12-02 00:00:00
SUSE: Security Advisory (SUSE-SU-2018:0336-1)
2021-04-19 00:00:00
Fedora Update for ecryptfs-utils FEDORA-2016-41301e2187
2016-08-02 00:00:00
nvd
nvd
CVE-2016-6224
2016-07-22 14:59:01
CVE-2015-8946
2016-07-22 14:59:00
fedora
fedora
[SECURITY] Fedora 23 Update: ecryptfs-utils-111-1.fc23
2016-11-01 16:23:53
[SECURITY] Fedora 24 Update: ecryptfs-utils-111-1.fc24
2016-07-20 00:25:53
ubuntu
ubuntu
eCryptfs vulnerability
2016-07-14 00:00:00
cve
cve
CVE-2015-8946
2016-07-22 14:59:00

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

CVSS3

3.3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

AI Score

3.3

Confidence

High

EPSS

0

Percentile

5.1%

JSON
Related for CVE-2016-6224
prion2nessus5ubuntucve2redhatcve1cvelist2debiancve2openvas4nvd2fedora2ubuntu1cve1