CVE-2015-3142

low-risk
Published 2017-06-26

The kernel-invoked coredump processor in Automatic Bug Reporting Tool (ABRT) does not properly check the ownership of files before writing core dumps to them, which allows local users to obtain sensitive information by leveraging write permissions to the working directory of a crashed application.

Do I need to act?

-
0.11% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
4
CVSS 4.7/10 Medium
LOCAL / HIGH complexity

Affected Products (1)

Automatic Bug Reporting Tool

Affected Vendors

Redhat

References (10)

Vendor Advisory http://rhn.redhat.com/errata/RHSA-2015-1083.html
http://rhn.redhat.com/errata/RHSA-2015-1210.html
Mailing List http://www.openwall.com/lists/oss-security/2015/04/17/5
Third Party Advisory http://www.securityfocus.com/bid/75116
Issue Tracking https://bugzilla.redhat.com/show_bug.cgi?id=1212818
Vendor Advisory http://rhn.redhat.com/errata/RHSA-2015-1083.html
http://rhn.redhat.com/errata/RHSA-2015-1210.html
Mailing List http://www.openwall.com/lists/oss-security/2015/04/17/5
Third Party Advisory http://www.securityfocus.com/bid/75116
Issue Tracking https://bugzilla.redhat.com/show_bug.cgi?id=1212818
17
/ 100
low-risk
Severity 12/34 · Low
Exploitability 0/34 · Minimal
Exposure 5/34 · Minimal