Home

CVE-2017-10140

Description

Postfix before 2.11.10, 3.0.x before 3.0.10, 3.1.x before 3.1.6, and 3.2.x before 3.2.2 might allow local users to gain privileges by leveraging undocumented functionality in Berkeley DB 2.x and later, related to reading settings from DB_CONFIG in the current directory.

Risk Information

Base Score
7.8
MODERATE
Vector
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.233

Associated Vulnerability

VulnerabilityOS Platform
Multiple vulnerabilities are fixed in macOS High Sierra 10.13.6 - Reboot AutomaticallyMac
Multiple vulnerabilities are fixed in macOS High Sierra 10.13.6 Combo Update - Reboot AutomaticallyMac
Multiple vulnerabilities are fixed in macOS High Sierra 10.13.5 - Reboot AutomaticallyMac
Multiple vulnerabilities are fixed in macOS High Sierra 10.13.4 - Reboot AutomaticallyMac
Multiple vulnerabilities are fixed in macOS High Sierra 10.13.4 Combo Update - Reboot AutomaticallyMac
Multiple vulnerabilities are fixed in macOS High Sierra 10.13.3Mac
Multiple vulnerabilities are fixed in macOS High Sierra 10.13.3 Combo UpdateMac
Multiple vulnerabilities are fixed in macOS High Sierra 10.13.2Mac
Multiple vulnerabilities are fixed in macOS High Sierra 10.13.2 Combo UpdateMac
Multiple vulnerabilities are fixed in macOS High Sierra 10.13.1Mac
Multiple vulnerabilities are fixed in Security Update 2017-001 macOS High Sierra v10.13.1Mac
Multiple vulnerabilities are fixed in Security Update 2017-001 macOS High Sierra v10.13Mac
Berkeley v5.3 Database Documentation [html] (USN-3489-1) libdb5.3_5.3.28-3ubuntu3.1_i386.debLinux
Berkeley v5.3 Database Documentation [html] (USN-3489-1) libdb5.3_5.3.28-3ubuntu3.1_amd64.debLinux
Berkeley v5.3 Database Documentation [html] (USN-3489-1) libdb5.3_5.3.28-12ubuntu0.1_i386.debLinux
Berkeley v5.3 Database Documentation [html] (USN-3489-1) libdb5.3_5.3.28-12ubuntu0.1_amd64.debLinux
Berkeley v5.3 Database Documentation [html] (USN-3489-1) db5.3-util_5.3.28-3ubuntu3.1_i386.debLinux
Berkeley v5.3 Database Documentation [html] (USN-3489-1) db5.3-util_5.3.28-3ubuntu3.1_amd64.debLinux
Berkeley v5.3 Database Documentation [html] (USN-3489-1) db5.3-util_5.3.28-12ubuntu0.1_i386.debLinux
Berkeley v5.3 Database Documentation [html] (USN-3489-1) db5.3-util_5.3.28-12ubuntu0.1_amd64.debLinux
libdb Security Update (ALAS-2023-1965) libdb-5.3.21-24.amzn2.0.4.i686.rpmLinux
libdb Security Update (ALAS-2023-1965) libdb-5.3.21-24.amzn2.0.4.x86_64.rpmLinux
libdb Security Update (ALAS-2023-1965) libdb-cxx-5.3.21-24.amzn2.0.4.i686.rpmLinux
libdb Security Update (ALAS-2023-1965) libdb-cxx-5.3.21-24.amzn2.0.4.x86_64.rpmLinux
libdb Security Update (ALAS-2023-1965) libdb-sql-5.3.21-24.amzn2.0.4.i686.rpmLinux
libdb Security Update (ALAS-2023-1965) libdb-sql-5.3.21-24.amzn2.0.4.x86_64.rpmLinux
libdb Security Update (ALAS-2023-1965) libdb-tcl-5.3.21-24.amzn2.0.4.i686.rpmLinux
libdb Security Update (ALAS-2023-1965) libdb-tcl-5.3.21-24.amzn2.0.4.x86_64.rpmLinux
libdb Security Update (ALAS-2023-1965) libdb-java-5.3.21-24.amzn2.0.4.i686.rpmLinux
libdb Security Update (ALAS-2023-1965) libdb-java-5.3.21-24.amzn2.0.4.x86_64.rpmLinux
libdb Security Update (ALAS-2023-1965) libdb-devel-5.3.21-24.amzn2.0.4.x86_64.rpmLinux
libdb Security Update (ALAS-2023-1965) libdb-utils-5.3.21-24.amzn2.0.4.x86_64.rpmLinux
libdb Security Update (ALAS-2023-1965) libdb-cxx-devel-5.3.21-24.amzn2.0.4.x86_64.rpmLinux
libdb Security Update (ALAS-2023-1965) libdb-devel-doc-5.3.21-24.amzn2.0.4.noarch.rpmLinux
libdb Security Update (ALAS-2023-1965) libdb-sql-devel-5.3.21-24.amzn2.0.4.x86_64.rpmLinux
libdb Security Update (ALAS-2023-1965) libdb-tcl-devel-5.3.21-24.amzn2.0.4.x86_64.rpmLinux
libdb Security Update (ALAS-2023-1965) libdb-java-devel-5.3.21-24.amzn2.0.4.x86_64.rpmLinux
libdb Security Update (ALAS-2023-1965) libdb-devel-static-5.3.21-24.amzn2.0.4.x86_64.rpmLinux
libdb Security Update (ALAS2-2023-1965) libdb-5.3.21-24.amzn2.0.4.i686.rpmLinux
libdb Security Update (ALAS2-2023-1965) libdb-5.3.21-24.amzn2.0.4.x86_64.rpmLinux
libdb Security Update (ALAS2-2023-1965) libdb-cxx-5.3.21-24.amzn2.0.4.x86_64.rpmLinux
libdb Security Update (ALAS2-2023-1965) libdb-cxx-5.3.21-24.amzn2.0.4.i686.rpmLinux
libdb Security Update (ALAS2-2023-1965) libdb-cxx-devel-5.3.21-24.amzn2.0.4.x86_64.rpmLinux
libdb Security Update (ALAS2-2023-1965) libdb-devel-5.3.21-24.amzn2.0.4.x86_64.rpmLinux
libdb Security Update (ALAS2-2023-1965) libdb-devel-doc-5.3.21-24.amzn2.0.4.noarch.rpmLinux
libdb Security Update (ALAS2-2023-1965) libdb-devel-static-5.3.21-24.amzn2.0.4.x86_64.rpmLinux
libdb Security Update (ALAS2-2023-1965) libdb-java-5.3.21-24.amzn2.0.4.i686.rpmLinux
libdb Security Update (ALAS2-2023-1965) libdb-java-5.3.21-24.amzn2.0.4.x86_64.rpmLinux
libdb Security Update (ALAS2-2023-1965) libdb-java-devel-5.3.21-24.amzn2.0.4.x86_64.rpmLinux
libdb Security Update (ALAS2-2023-1965) libdb-sql-5.3.21-24.amzn2.0.4.i686.rpmLinux
libdb Security Update (ALAS2-2023-1965) libdb-sql-5.3.21-24.amzn2.0.4.x86_64.rpmLinux
libdb Security Update (ALAS2-2023-1965) libdb-sql-devel-5.3.21-24.amzn2.0.4.x86_64.rpmLinux
libdb Security Update (ALAS2-2023-1965) libdb-tcl-5.3.21-24.amzn2.0.4.x86_64.rpmLinux
libdb Security Update (ALAS2-2023-1965) libdb-tcl-5.3.21-24.amzn2.0.4.i686.rpmLinux
libdb Security Update (ALAS2-2023-1965) libdb-tcl-devel-5.3.21-24.amzn2.0.4.x86_64.rpmLinux
libdb Security Update (ALAS2-2023-1965) libdb-utils-5.3.21-24.amzn2.0.4.x86_64.rpmLinux

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-601562macOS High Sierra 10.13.6 - Reboot Automatically
PATCH-601563macOS High Sierra 10.13.6 Combo Update - Reboot Automatically
PATCH-601563macOS High Sierra 10.13.6 Combo Update - Reboot Automatically
PATCH-601562macOS High Sierra 10.13.6 - Reboot Automatically
PATCH-601563macOS High Sierra 10.13.6 Combo Update - Reboot Automatically
PATCH-601562macOS High Sierra 10.13.6 - Reboot Automatically
PATCH-601563macOS High Sierra 10.13.6 Combo Update - Reboot Automatically
PATCH-601562macOS High Sierra 10.13.6 - Reboot Automatically
PATCH-601563macOS High Sierra 10.13.6 Combo Update - Reboot Automatically
PATCH-601562macOS High Sierra 10.13.6 - Reboot Automatically
PATCH-601312Security Update 2017-001 macOS High Sierra v10.13.1
PATCH-601345Security Update 2017-001 macOS High Sierra v10.13

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234