CVE-2014-8583
16.12.2014, 18:59
mod_wsgi before 4.2.4 for Apache, when creating a daemon process group, does not properly handle when group privileges cannot be dropped, which might allow attackers to gain privileges via unspecified vectors.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| modwsgi | mod_wsgi | 𝑥 ≤ 4.2.4 |
𝑥
= Vulnerable software versions
Debian Releases
Ubuntu Releases
Amazon Linux Releases
Amazon Package | |||
|---|---|---|---|
| mod24_wsgi-debuginfo |
| ||
| mod24_wsgi-python26 |
| ||
| mod24_wsgi-python27 |
| ||
| mod24_wsgi-python34 |
| ||
| mod24_wsgi-python35 |
| ||
| mod24_wsgi-python36 |
| ||
| mod_wsgi |
| ||
| mod_wsgi-debuginfo |
|
Common Weakness Enumeration
References