Lucene search
F5F5:K03710547HistoryJan 26, 2018 - 12:00 a.m.
K03710547 : Linux RPM vulnerability CVE-2017-7501
2018-01-2600:00:00
my.f5.com
25
Security Advisory Description
It was found that versions of rpm before 4.13.0.2 use temporary files with predictable names when installing an RPM. An attacker with ability to write in a directory where files will be installed could create symbolic links to an arbitrary location and modify content, and possibly permissions to arbitrary files, which could be used for denial of service or possibly privilege escalation. (CVE-2017-7501)
Impact
Traffix SDC
When exploiting this vulnerability, an attacker can elevate privileges.
BIG-IP, ARX, Enterprise Manager, BIG-IQ, F5 iWorkflow, LineRate
There is no impact; these F5 products are not affected by this vulnerability.
| CPE | Name | Operator | Version |
|---|---|---|---|
| big-ip afm | eq | 11.5.1 | |
| big-ip afm | eq | 11.5.2 | |
| big-ip afm | eq | 11.5.3 | |
| big-ip afm | eq | 11.5.4 | |
| big-ip afm | eq | 11.5.5 | |
| big-ip afm | eq | 11.6.1 | |
| big-ip afm | eq | 11.6.2 | |
| big-ip afm | eq | 11.6.3 | |
| big-ip afm | eq | 12.1.0 | |
| big-ip afm | eq | 12.1.1 |
Related
nessus
nessus
EulerOS Virtualization 3.0.1.0 : rpm (EulerOS-SA-2019-1466)
2019-05-14 00:00:00
EulerOS 2.0 SP2 : rpm (EulerOS-SA-2018-1353)
2018-11-06 00:00:00
EulerOS 2.0 SP5 : rpm (EulerOS-SA-2019-1011)
2019-01-08 00:00:00
osv
osv
redhatcve
redhatcve
cvelist
cvelist
nvd
nvd
openvas
openvas
Huawei EulerOS: Security Advisory for rpm (EulerOS-SA-2019-1466)
2020-01-23 00:00:00
Huawei EulerOS: Security Advisory for rpm (EulerOS-SA-2019-1210)
2020-01-23 00:00:00
Huawei EulerOS: Security Advisory for rpm (EulerOS-SA-2018-1353)
2020-01-23 00:00:00
cve
cve
prion
prion
Privilege escalation
2017-11-22 22:29:00
Race condition
2022-08-25 20:15:00
Design/Logic Flaw
2022-08-26 16:15:00
ubuntucve
ubuntucve
debiancve
debiancve
rosalinux
rosalinux
Advisory ROSA-SA-2021-1963
2021-07-02 18:04:36
fedora
fedora
[SECURITY] Fedora 26 Update: rpm-4.13.0.2-1.fc26
2017-11-07 22:21:47
[SECURITY] Fedora 25 Update: rpm-4.13.0.2-1.fc25
2017-11-28 17:35:50
suse
suse
Security update for rpm (moderate)
2018-10-24 15:11:26
mageia
mageia
Updated rpm package fixes security vulnerabilities
2017-10-30 22:23:17
veracode
veracode
Denial Of Service (DoS)
2022-10-01 00:52:29
Privilege Escalation
2022-08-29 04:37:38
alpinelinux
alpinelinux
CVE-2021-35939
2022-08-26 16:15:08
CVE-2021-35937
2022-08-25 20:15:09
gentoo
gentoo
RPM: Multiple vulnerabilities
2018-11-28 00:00:00
photon
photon
Home
Download Photon OS
User Documentation
FAQ
Security Advisories
Related Information
Lightwave - PHSA-2017-1.0-0095
2017-12-28 00:00:00
Critical Photon OS Security Update - PHSA-2017-0095
2017-12-28 00:00:00
Critical Photon OS Security Update - PHSA-2018-0009
2018-01-04 00:00:00
ibm
ibm
Security Bulletin: App Connect Enterprise Certified Container UBI updates
2024-03-07 14:53:54
Security Bulletin: IBM Observability with Instana (OnPrem) is affected by Multiple Security Vulnerabilities
2024-05-30 11:23:32
Security Bulletin: IBM QRadar SIEM contains multiple vulnerabilities
2024-04-11 18:19:49