Powerpc-utils Project : Security Vulnerabilities, CVEs,
scripts/amsvis/powerpcAMS/amsnet.py in powerpc-utils-python uses the pickle Python module unsafely, which allows remote attackers to execute arbitrary code via a crafted serialized object.
Max CVSS
10.0
EPSS Score
8.94%
Published
2015-02-19
Updated
2023-02-13
snap in powerpc-utils 1.2.20 produces an archive with fstab and yaboot.conf files potentially containing cleartext passwords, and lacks a warning about reviewing this archive to detect included passwords, which might allow remote attackers to obtain sensitive information by leveraging access to a technical-support data stream.
Max CVSS
5.0
EPSS Score
0.24%
Published
2014-06-17
Updated
2015-03-12
2 vulnerabilities found