Vulnerabilities > Hylafax Project

DATE	CVE	VULNERABILITY TITLE	RISK
2020-06-30	CVE-2020-15397	Incorrect Permission Assignment for Critical Resource vulnerability in multiple products HylaFAX+ through 7.0.2 and HylaFAX Enterprise have scripts that execute binaries from directories writable by unprivileged users (e.g., locations under /var/spool/hylafax that are writable by the uucp account). local low complexity hylafax-project ifax CWE-732	7.8
2020-06-30	CVE-2020-15396	Race Condition vulnerability in multiple products In HylaFAX+ through 7.0.2 and HylaFAX Enterprise, the faxsetup utility calls chown on files in user-owned directories. local low complexity hylafax-project ifax fedoraproject opensuse CWE-362	7.8

Vulnerabilities > Hylafax Project {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Hylafax Project"}]}