Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
keepalived 2.0.8 didn't check for existing plain files when writing data to a temporary file upon a call to PrintData or PrintStats. If a local attacker had previously created a file with the expected name (e.g., /tmp/keepalived.data or /tmp/keepalived.stats), with read access for the attacker and write access for the keepalived process, then this potentially leaked sensitive information.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Keepalived 安全漏洞
Vulnerability Description
Keepalived是一个款使用C语言编写的路由软件。该软件主要用于负载均衡和故障检测等。 keepalived 2.0.8版本中存在安全漏洞,该漏洞源于程序没有检查文件。本地攻击者可借助特制的文件名利用该漏洞覆盖任意文件。
CVSS Information
N/A
Vulnerability Type
N/A