Local File Permission Vulnerability in FusionForge by FusionForge
CVE-2013-1423

Currently unrated

Key Information:

Vendor

Fusionforge

Status
Fusionforge
Vendor
CVE Published:
14 March 2013

What is CVE-2013-1423?

In FusionForge versions 5.0, 5.1, and 5.2, a security flaw allows local users to exploit symlink or hard link vulnerabilities to alter file permissions. This could lead to unauthorized access to sensitive information or unintended system impacts. Attackers can leverage paths like contrib/gforge-3.0-cronjobs.patch and plugins that fail to properly validate file operations, which increases the risk of unauthorized file modifications and the exposure of sensitive data. This vulnerability poses significant privacy risks and requires immediate remediation to protect server integrity and user data.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www.securityfocus.com/bid/58143
vdb-entryx_refsource_BID
http://www.debian.org/security/2013/dsa-2633
vendor-advisoryx_refsource_DEBIAN
https://fusionforge.org/plugins/scmgit/cgi-bin/gitweb.cgi...
x_refsource_CONFIRM

Timeline

  • Vulnerability Reserved

  • Vulnerability published

JSON
.