CVE-2016-15024

LOW

doomsider_shadow < 2016-06-09 - Denial of Service

Title source: llm

Description

A vulnerability was found in doomsider shadow. It has been classified as problematic. Affected is an unknown function. The manipulation leads to denial of service. Attacking locally is a requirement. The complexity of an attack is rather high. The exploitability is told to be difficult. Continious delivery with rolling releases is used by this product. Therefore, no version details of affected nor updated releases are available. The patch is identified as 3332c5ba9ec3014ddc74e2147190a050eee97bc0. It is recommended to apply a patch to fix this issue. VDB-221478 is the identifier assigned to this vulnerability.

References (3)

Core 3

Core References

Third Party Advisory vdb-entry technical-description

https://vuldb.com/?id.221478

Permissions Required, Third Party Advisory signature permissions-required

https://vuldb.com/?ctiid.221478

Patch patch

https://github.com/doomsider/shadow/commit/3332c5ba9ec3014ddc74e2147190a050eee97bc0

Scores

CVSS v3 2.5

EPSS 0.0021

EPSS Percentile 10.4%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L

Details

CWE

CWE-404

Status published

Products (1)

doomsider_shadow_project/doomsider_shadow < 2016-06-09

Published Feb 19, 2023

Tracked Since Feb 18, 2026