CVE-2011-1836 — Vulnetix

Try Vulnetix Request Demo

CVE-2011-1836 PUBLISHED CVSS 4.599999904632568 MEDIUM

utils/ecryptfs-recover-private in ecryptfs-utils before 90 does not establish a subdirectory with safe permissions, which might allow local users to bypass intended access restrictions via standard filesystem operations during the recovery process.

EPSS 0.05% · 14.3th percentile

Risk Scores

CVSS v2.0

4.599999904632568

EPSS Score

0.05%

14.3th percentile

Affected Products

Vendor	Product	Versions
n/a	n/a	n/a
ecryptfs	ecryptfs-utils	0, 62, 63
ecryptfs	ecryptfs_utils	58, 59, 60

Timeline

Feb 15, 2014 CVE Published
Feb 4, 2022 EPSS Score
Mar 28, 2022 EPSS Score
May 19, 2022 EPSS Score
Jul 10, 2022 EPSS Score
Sep 1, 2022 EPSS Score
Oct 23, 2022 EPSS Score
Dec 14, 2022 EPSS Score
Feb 4, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Mar 28, 2023 EPSS Score
May 19, 2023 EPSS Score

References

SUSE-SU-2011:0898 vendor-advisory
https://launchpad.net/ecryptfs/+download url
https://bugzilla.redhat.com/show_bug.cgi?id=729465 url
USN-1188-1 vendor-advisory
https://nvd.nist.gov/vuln/detail/CVE-2011-1836 advisory

Open in Interactive Console →