| Title | X File Explorer における認可・権限・アクセス制御に関する脆弱性 |
|---|---|
| Summary | X File Explorer (別名 xfe)には、認可・権限・アクセス制御に関する脆弱性が存在します。 |
| Possible impacts | 情報を取得される可能性があります。 |
| Solution | ベンダ情報および参考情報を参照して適切な対策を実施してください。 |
| Publication Date | Feb. 24, 2014, midnight |
| Registration Date | Oct. 11, 2018, 6:10 p.m. |
| Last Update | Oct. 11, 2018, 6:10 p.m. |
| CVSS3.0 : 警告 | |
| Score | 5.5 |
|---|---|
| Vector | CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N |
| CVSS2.0 : 注意 | |
| Score | 2.1 |
|---|---|
| Vector | AV:L/AC:L/Au:N/C:P/I:N/A:N |
| Debian |
| Debian GNU/Linux |
| X File Explorer project |
| X File Explorer |
| No | Changed Details | Date of change |
|---|---|---|
| 1 | [2018年10月11日] 掲載 |
Oct. 11, 2018, 6:10 p.m. |
| Summary | X File Explorer (aka xfe) might allow local users to bypass intended access restrictions and gain access to arbitrary files by leveraging failure to use directory masks when creating files on Samba and NFS shares. |
|---|---|
| Publication Date | July 16, 2018, 11:29 p.m. |
| Registration Date | Jan. 26, 2021, 3:08 p.m. |
| Last Update | Nov. 21, 2024, 11:05 a.m. |
| Configuration1 | or higher | or less | more than | less than | |
| cpe:2.3:a:x_file_explorer_project:x_file_explorer:1.32.5:*:*:*:*:*:*:* | |||||
| Configuration2 | or higher | or less | more than | less than | |
| cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:* | |||||
| cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:* | |||||