CVE-2016-15024

Severity CVSS v4.0:

Pending analysis

Type:

Unavailable / Other

Publication date:

19/02/2023

Last modified:

17/05/2024

Description

A vulnerability was found in doomsider shadow. It has been classified as problematic. Affected is an unknown function. The manipulation leads to denial of service. Attacking locally is a requirement. The complexity of an attack is rather high. The exploitability is told to be difficult. Continious delivery with rolling releases is used by this product. Therefore, no version details of affected nor updated releases are available. The patch is identified as 3332c5ba9ec3014ddc74e2147190a050eee97bc0. It is recommended to apply a patch to fix this issue. VDB-221478 is the identifier assigned to this vulnerability.

Impact

Vector 3.x

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS v3.1 Severity and Metrics:

Base Score: 5.50 MEDIUM
Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): Low
User Interaction (UI): None
Scope (S): Unchanged
Confidentiality (C): None
Integrity (I): None
Availability (A): High

Base Score 3.x

5.50

Severity 3.x

MEDIUM

Vector 2.0

AV:L/AC:H/Au:S/C:N/I:N/A:P CVSS v2.0 Severity and Metrics:

Base Score: 1.00 LOW
Vector: AV:L/AC:H/Au:S/C:N/I:N/A:P

Attack Vector (AV): Local
Attack Complexity (AC): High
Authentication (Au): Single
Confidentiality (C): None
Integrity (I): None
Availability (A): Physical