VIR Vulnerability Intelligence Relay

CVE-2012-3453

low
Published 2012-08-07 · Modified 2026-04-29
CVSS v3
CVSS v2
3.6
VIR risk
3.6

Description

logol 1.5.0 uses world writable permissions for the /var/lib/logol/results directory, which allows local users to delete or overwrite arbitrary files.

Predictions

Exploit likelihood
20%
Patch ETA

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: debian — https://security-tracker.debian.org/tracker/CVE-2012-3453

OS impact
OSVersionStatusFixed in
debian debianbookwormfixed1.5.0-4
debian debianbullseyefixed1.5.0-4

Application impact
VendorProductVersionsFixed
debianlogol1.5.0

References

CWEs

CWE-264

Verify integrity in audit chain (admin only). AS-IS.