Lucene search
HistorySep 03, 2015 - 2:59 p.m.
CVE-2015-5189
4.9 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:S/C:P/I:P/A:N
6.5 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
46.0%
Race condition in pcsd in PCS 0.9.139 and earlier uses a global variable to validate usernames, which allows remote authenticated users to gain privileges by sending a command that is checked for security after another user is authenticated.
Affected configurations
Node
pacemaker\/corosync_configuration_system_projectpacemaker\/corosync_configuration_systemRange≤0.9.139
Related
veracode
veracode
Privilege Escalations
2019-01-15 09:07:43
Privilege Escalation
2019-05-02 05:18:13
prion
prion
Race condition
2015-09-03 14:59:00
debiancve
debiancve
CVE-2015-5189
2015-09-03 14:59:02
cvelist
cvelist
CVE-2015-5189
2015-09-03 14:00:00
cve
cve
CVE-2015-5189
2015-09-03 14:59:02
openvas
openvas
Fedora Update for pcs FEDORA-2015-15065
2015-09-19 00:00:00
Fedora Update for pcs FEDORA-2015-14983
2015-09-19 00:00:00
CentOS Update for pcs CESA-2015:1700 centos6
2015-09-02 00:00:00
nessus
nessus
CentOS 6 / 7 : pcs (CESA-2015:1700)
2015-10-22 00:00:00
Fedora 22 : pcs-0.9.139-7.fc22 (2015-14983)
2015-09-21 00:00:00
redhat
redhat
(RHSA-2015:1700) Important: pcs security update
2015-09-01 00:00:00
fedora
fedora
[SECURITY] Fedora 22 Update: pcs-0.9.139-7.fc22
2015-09-18 20:56:02
[SECURITY] Fedora 21 Update: pcs-0.9.137-5.fc21
2015-09-18 22:22:41
centos
centos
pcs, python security update
2015-09-01 15:34:49
4.9 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:S/C:P/I:P/A:N
6.5 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
46.0%
Related for NVD:CVE-2015-5189