MidnightBSD

Advisories for rootkit_hunter_project

CVE-2017-7480 HIGH

rkhunter versions before 1.4.4 are vulnerable to file download over insecure channel when doing mirror update resulting into potential remote code execution.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-300,CWE-417,

Products Affected

Vendor Product Version
rootkit_hunter_project rootkit_hunter *