CPE-6BEFA5E7-724C-4AFC-BE56-463601605130 Detail

CPE Details

Pesign Project Pesign 0.10

Vendor

pesign_project

Product

pesign

Version

0.10

Created

2022-05-05
11h42 +00:00

Modified

2022-05-05
17h39 +00:00

Official links

CPE NVD

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Notifications manage

List of Notifications

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Parameters

You can specify a title that will be retrieved in the alerts that will be sent out.

CPE ID

Planning

Month

Next run calculation

Day

Weekday

Hour

Minute

Creation date

Last execution

Next execution

Functionality requiring a connection

This feature, which allows you to receive alerts, is only active when you are logged into your account.

CPE Name: cpe:2.3:a:pesign_project:pesign:0.10:::::::*

Informations

Vendor

pesign_project

Product

pesign

Version

0.10

Related CVE

Open and find in CVE List

CVE ID	Published	Description	Score	Severity
CVE-2022-3560	2023-02-02 00h00 +00:00	A flaw was found in pesign. The pesign package provides a systemd service used to start the pesign daemon. This service unit runs a script to set ACLs for /etc/pki/pesign and /run/pesign directories to grant access privileges to users in the 'pesign' group. However, the script doesn't check for symbolic links. This could allow an attacker to gain access to privileged files and directories via a path traversal attack.	5.5	Medium
CVE-2022-1249	2022-04-29 13h43 +00:00	A NULL pointer dereference flaw was found in pesign's cms_set_pw_data() function of the cms_common.c file. The function fails to handle the NULL pwdata invocation from daemon.c, which leads to an explicit NULL dereference and crash on all attempts to daemonize pesign.	3.3	Low

Pesign Project Pesign 0.10

CPE Details

CPE Name: cpe:2.3:a:pesign_project:pesign:0.10:*:*:*:*:*:*:*

Informations

Vendor

Product

Version

Related CVE

CPE Name: cpe:2.3:a:pesign_project:pesign:0.10:::::::*