Nixos CVE - OpenCVE

Filtered by vendor Nixos Subscribe

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2017-7412	1 Nixos	1 Nixos	2020-05-07	7.2 HIGH	7.8 HIGH
NixOS 17.03 before 17.03.887 has a world-writable Docker socket, which allows local users to gain privileges by executing docker commands.
CVE-2019-17365	1 Nixos	1 Nix	2019-10-23	4.6 MEDIUM	7.8 HIGH
Nix through 2.3 allows local users to gain access to an arbitrary user's account because the parent directory of the user-profile directories is world writable.

Vulnerabilities (CVE)