Redhat Automatic Bug Reporting Tool — known CVE vulnerabilities
Every CVE whose affected-product data names Redhat Automatic Bug Reporting Tool, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (14)
CVE-2015-3315 — CVSS 7.8 (high): Automatic Bug Reporting Tool (ABRT) allows local users to read, change the ownership of, or have other unspecified impact on arbitrary…
CVE-2015-1869 — CVSS 7.8 (high): The default event handling scripts in Automatic Bug Reporting Tool (ABRT) allow local users to gain privileges as demonstrated by a symlink…
CVE-2015-3159 — CVSS 7.8 (high): The abrt-action-install-debuginfo-to-abrt-cache help program in Automatic Bug Reporting Tool (ABRT) does not properly handle the process…
CVE-2015-3151 — CVSS 7.8 (high): Directory traversal vulnerability in abrt-dbus in Automatic Bug Reporting Tool (ABRT) allows local users to read, write to, or change…
CVE-2015-3150 — CVSS 7.1 (high): abrt-dbus in Automatic Bug Reporting Tool (ABRT) allows local users to delete or change the ownership of arbitrary files via the problem…
CVE-2015-5287 — CVSS 6.9 (medium): The abrt-hook-ccpp help program in Automatic Bug Reporting Tool (ABRT) before 2.7.1 allows local users with certain permissions to gain…
CVE-2012-5660 — CVSS 6.9 (medium): abrt-action-install-debuginfo in Automatic Bug Reporting Tool (ABRT) 2.0.9 and earlier allows local users to set world-writable permissions…
CVE-2015-3147 — CVSS 6.5 (medium): daemon/abrt-handle-upload.in in Automatic Bug Reporting Tool (ABRT), when moving problem reports from /var/spool/abrt-upload, allows local…
CVE-2015-1870 — CVSS 5.5 (medium): The event scripts in Automatic Bug Reporting Tool (ABRT) uses world-readable permission on a copy of sosreport file in problem directories…
CVE-2015-3142 — CVSS 4.7 (medium): The kernel-invoked coredump processor in Automatic Bug Reporting Tool (ABRT) does not properly check the ownership of files before writing…
CVE-2012-5659 — CVSS 3.7 (low): Untrusted search path vulnerability in plugins/abrt-action-install-debuginfo-to-abrt-cache.c in Automatic Bug Reporting Tool (ABRT) 2.0.9…
CVE-2015-5273 — CVSS 3.6 (low): The abrt-action-install-debuginfo-to-abrt-cache help program in Automatic Bug Reporting Tool (ABRT) before 2.7.1 allows local users to…
CVE-2013-4209 — CVSS 3.3 (low): Automatic Bug Reporting Tool (ABRT) before 2.1.6 allows local users to obtain sensitive information about arbitrary files via vectors…
CVE-2012-1106 — CVSS 1.9 (low): The C handler plug-in in Automatic Bug Reporting Tool (ABRT), possibly 2.0.8 and earlier, does not properly set the group (GID) permissions…