Lucene search
Veracode Vulnerability DatabaseVERACODE:12094HistoryJan 15, 2019 - 9:12 a.m.
Arbitrary Code Execution
2019-01-1509:12:21
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
2
0.0004 Low
EPSS
Percentile
5.1%
setroubleshoot is vulnerable to arbitrary code execution. Shell command injection flaws were found in the way the setroubleshoot executed external commands. A local attacker able to trigger certain SELinux denials could use these flaws to execute arbitrary code with root privileges.
Related
prion
prion
Design/Logic Flaw
2017-04-11 18:59:00
osv
osv
CVE-2016-4444
2017-04-11 18:59:00
cve
cve
CVE-2016-4444
2017-04-11 18:59:00
redhatcve
redhatcve
CVE-2016-4444
2016-06-21 11:48:42
cvelist
cvelist
CVE-2016-4444
2017-04-11 18:00:00
nvd
nvd
CVE-2016-4444
2017-04-11 18:59:00
openvas
openvas
CentOS Update for setroubleshoot-plugins CESA-2016:1293 centos7
2016-06-24 00:00:00
Huawei EulerOS: Security Advisory for setroubleshoot, setroubleshoot-plugins (EulerOS-SA-2016-1033)
2020-01-23 00:00:00
CentOS Update for setroubleshoot CESA-2016:1293 centos7
2016-06-24 00:00:00
centos
centos
setroubleshoot security update
2016-06-23 23:41:47
setroubleshoot security update
2016-06-21 19:07:23
nessus
nessus
Oracle Linux 7 : setroubleshoot / setroubleshoot-plugins (ELSA-2016-1293)
2016-06-24 00:00:00
oraclelinux
oraclelinux
setroubleshoot and setroubleshoot-plugins security update
2016-06-23 00:00:00
setroubleshoot and setroubleshoot-plugins security update
2016-06-21 00:00:00
redhat
redhat
