Software Detail
Title
CRITICAL
HIGH
MEDIUM
LOW
CVE
CWE
Number of items displayed
CentOS Number Of NVD 4 CRITICAL 0 HIGH 2 MEDIUM 2 LOW 0
URL https://www.centos.org/
Explanation A clone OS of Red Hat Enterprise Linux (RHEL).
It will be supported for 10 years.
Tag
  • Linux
Add Information URL
No Type Name URL
1 https://wiki.centos.org/
2 https://wiki.centos.org/Download
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
1 CentOS 8 1(1911) Sept. 24, 2019 Sept. 24, 2019 Dec. 31, 2021 Dec. 31, 2021 0 0 0 0
2 CentOS 7 7(1908) Sept. 17, 2019 July 7, 2014 Dec. 31, 2020 July 30, 2024 0 2 0 0
3 CentOS 6 6.10 July 3, 2018 July 10, 2011 March 31, 2017 Nov. 30, 2020 June 30, 2024 0 1 1 0
4 CentOS 5 5.11 Sept. 30, 2014 April 12, 2007 March 31, 2017 Nov. 30, 2020 0 0 1 0
5 CentOS Stream 0 0 0 0
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
1 7.8
8.5 		HIGH
Local 		Bubblewrap (bwrap) before version 0.4.1, if installed in setuid mode and the kernel supports unprivileged user namespaces, then the `bwrap --userns2` option can be used to make the setuid process kee… CWE-269
 Improper Privilege Management 		CVE-2020-5291 cpe:2.3:o:centos:centos:7.0:* 2020-04-3 02:33
2020-04-1 		Show GitHub Exploit DB Packet Storm
2 7.8
7.2 		HIGH
Local 		Linux distributions that have not patched their long-term kernels with https://git.kernel.org/linus/a87938b2e246b81b4fb713edb371a9fa3c5c3c86 (committed on April 14, 2015). This kernel vulnerability w… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-1000253 cpe:2.3:o:centos:centos:7.1611:*
cpe:2.3:o:centos:centos:7.1511:*
cpe:2.3:o:centos:centos:7.1503:*
cpe:2.3:o:c… 		2023-01-18 06:04
2017-10-5 		Show GitHub Exploit DB Packet Storm
3 -
6.8 		MEDIUM Unspecified vulnerability in EMC Documentum Content Server 6.0, 6.5 before SP2 P02, 6.5 SP3 before SP3 P02, and 6.6 before P02 allows local users to obtain "highest super user privileges" by leveragi… NVD-CWE-noinfo
CVE-2011-4144 cpe:2.3:o:centos:centos:6:* 2012-02-16 14:00
2012-02-2 		Show GitHub Exploit DB Packet Storm
4 -
4.9 		MEDIUM Red Hat Enterprise Linux 5 and Fedora install the Bind /etc/rndc.key file with world-readable permissions, which allows local users to perform unauthorized named commands, such as causing a denial of… CWE-200
Information Exposure 		CVE-2007-6283 cpe:2.3:o:centos:centos:5:* 2022-02-26 04:06
2007-12-18 		Show GitHub Exploit DB Packet Storm