Vulnerabilities > Tcmu Runner Project > Tcmu Runner > 1.2.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-11-17 | CVE-2017-1000201 | Improper Input Validation vulnerability in Tcmu-Runner Project Tcmu-Runner The tcmu-runner daemon in tcmu-runner version 1.0.5 to 1.2.0 is vulnerable to a local denial of service attack | 5.5 |
| 2017-11-17 | CVE-2017-1000200 | NULL Pointer Dereference vulnerability in Tcmu-Runner Project Tcmu-Runner tcmu-runner version 1.0.5 to 1.2.0 is vulnerable to a dbus triggered NULL pointer dereference in the tcmu-runner daemon's on_unregister_handler() function resulting in denial of service | 7.5 |
| 2017-11-17 | CVE-2017-1000199 | Information Exposure vulnerability in Tcmu-Runner Project Tcmu-Runner tcmu-runner version 0.91 up to 1.20 is vulnerable to information disclosure in handler_qcow.so resulting in non-privileged users being able to check for existence of any file with root privileges. | 7.5 |
| 2017-11-17 | CVE-2017-1000198 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Tcmu-Runner Project Tcmu-Runner tcmu-runner daemon version 0.9.0 to 1.2.0 is vulnerable to invalid memory references in the handler_glfs.so handler resulting in denial of service | 7.5 |