Miggo Logo
Miggo Vulnerability Database
CVE-2014-4995

CVE-2014-4995: VladTheEnterprising allows local users to obtain sensitive information by reading MySQL root password from temporary file

7

CVSS Score
3.0

Basic Information

CVE ID
CVE-2014-4995
GHSA ID
GHSA-86cf-g34f-7462
EPSS Score
0.16772%
CWE
CWE-200
Published
5/14/2022
Updated
1/26/2023
KEV Status
No
Technology
TechnologyRuby

Technical Details

CVSS Vector
CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Package NameEcosystemVulnerable VersionsFirst Patched Version
VladTheEnterprisingrubygems<= 0.2

Vulnerability Intelligence
Miggo AIMiggo AI

Miggo AIRoot Cause Analysis

The vulnerable function is identified based on the information provided in the vulnerability description and the code snippets. The function remove_dot_my_cnf is directly related to the removal of the temporary file and is thus considered vulnerable due to its involvement in the race condition.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

R*** *on*ition in `li*/vl**/***/mysql.r*` in t** Vl**T***nt*rprisin* **m *.* *or Ru*y *llows lo**l us*rs to o*t*in s*nsitiv* in*orm*tion *y r***in* t** MySQL root p*sswor* *rom * t*mpor*ry *il* ***or* it is r*mov**.

Reasoning

T** vuln*r**l* *un*tion is i**nti*i** **s** on t** in*orm*tion provi*** in t** vuln*r**ility **s*ription *n* t** *o** snipp*ts. T** *un*tion r*mov*_*ot_my_*n* is *ir**tly r*l*t** to t** r*mov*l o* t** t*mpor*ry *il* *n* is t*us *onsi**r** vuln*r**l*