Vulnerabilities > Nixos

DATE CVE VULNERABILITY TITLE RISK
2023-06-29 CVE-2023-36476 Insufficiently Protected Credentials vulnerability in Nixos Calamares-Nixos-Extensions
calamares-nixos-extensions provides Calamares branding and modules for NixOS, a distribution of GNU/Linux.
local
low complexity
nixos CWE-522
5.5
2019-10-09 CVE-2019-17365 Incorrect Default Permissions vulnerability in Nixos NIX
Nix through 2.3 allows local users to gain access to an arbitrary user's account because the parent directory of the user-profile directories is world writable.
local
low complexity
nixos CWE-276
4.6
2017-04-04 CVE-2017-7412 Unspecified vulnerability in Nixos 17.03
NixOS 17.03 before 17.03.887 has a world-writable Docker socket, which allows local users to gain privileges by executing docker commands.
local
low complexity
nixos
7.2