Setroubleshoot

setroubleshoot

Vendor: Selinux • 3 CVEs

CVEs (3)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2015-1815 2Fedoraproject Selinux 2Fedora Setroubleshoot May 6, 2026 Mar 30, 2015 N/A· v4 N/A· v3 10.0 HIGH· v2 The get_rpm_nvr_by_file_path_temporary function in util.py in setroubleshoot before 3.2.22 allows remote attackers to execute arbitrary commands via shell metacharacters in a file name.
CVE-2007-5496 1Selinux 1Setroubleshoot Apr 23, 2026 May 23, 2008 N/A· v4 N/A· v3 1.9 LOW· v2 Cross-site scripting (XSS) vulnerability in setroubleshoot 2.0.5 allows local users to inject arbitrary web script or HTML via a crafted (1) file or (2) process name, which triggers an Access Vector Cache (AVC) log entry...Show more Cross-site scripting (XSS) vulnerability in setroubleshoot 2.0.5 allows local users to inject arbitrary web script or HTML via a crafted (1) file or (2) process name, which triggers an Access Vector Cache (AVC) log entry in a log file used during composition of HTML documents for sealert.Show less
CVE-2007-5495 1Selinux 1Setroubleshoot Apr 23, 2026 May 23, 2008 N/A· v4 N/A· v3 4.4 MEDIUM· v2 sealert in setroubleshoot 2.0.5 allows local users to overwrite arbitrary files via a symlink attack on the sealert.log temporary file.