Vulnerability Database

290,301

Total vulnerabilities in the database

CVE-2013-4300

The scm_check_creds function in net/core/scm.c in the Linux kernel before 3.11 performs a capability check in an incorrect namespace, which allows local users to gain privileges via PID spoofing.

  • Published: Sep 25, 2013
  • Updated: Apr 13, 2023
  • CVE: CVE-2013-4300
  • Severity: High
  • Exploit:

CVSS v2:

  • Severity: High
  • Score: 7.2
  • AV:L/AC:L/Au:N/C:C/I:C/A:C

CWEs:

Software From Fixed in
linux / linux_kernel 3.9-rc4 3.9-rc4.x
linux / linux_kernel 3.9-rc3 3.9-rc3.x
linux / linux_kernel 3.9-rc2 3.9-rc2.x
linux / linux_kernel 3.9-rc1 3.9-rc1.x
linux / linux_kernel 3.8.6 3.9