CVE-2015-3147 vulnerability in Red Hat Products
Published on January 14, 2020

daemon/abrt-handle-upload.in in Automatic Bug Reporting Tool (ABRT), when moving problem reports from /var/spool/abrt-upload, allows local users to write to arbitrary files or possibly have other unspecified impact via a symlink attack on (1) /var/spool/abrt or (2) /var/tmp/abrt.

NVD

Products Associated with CVE-2015-3147

Want to know whenever a new CVE is published for Red Hat products? stack.watch will email you.

Red Hat Enterprise Linux Desktop

Red Hat Enterprise Linux Workstation

Red Hat Enterprise Linux Server

Red Hat Automatic Bug Reporting Tool

Red Hat Enterprise Linux Server Eus

Red Hat Enterprise Linux Server Tus

Red Hat Enterprise Linux Server Aus

Affected Versions

ABRT Version before 2.6.0 is affected by CVE-2015-3147

Exploit Probability

EPSS

0.54%

Percentile

67.07%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2015-3147 vulnerability in Red Hat ProductsPublished on January 14, 2020

Products Associated with CVE-2015-3147

Affected Versions

Exploit Probability

CVE-2015-3147 vulnerability in Red Hat Products
Published on January 14, 2020