CCE-90617-2Platform: cpe:/o:centos:centos:7, cpe:/o:redhat:enterprise_linux:7 | Date: (C)2017-06-29 (M)2023-07-04 |
The Transparent Inter-Process Communication (TIPC) protocol
is designed to provide communications between nodes in
Acluster.
To configure the system to prevent the 'tipc'
kernel module from being loaded, add the following line to a file in the directory '/etc/modprobe.d':
Parameter:
[yes/no]
Technical Mechanism:
Disabling TIPC protects
the system against exploitation of any flaws in its implementation.
CCSS Severity: | CCSS Metrics: |
CCSS Score : 9.2 | Attack Vector: LOCAL |
Exploit Score: 2.5 | Attack Complexity: LOW |
Impact Score: 6.0 | Privileges Required: NONE |
Severity: CRITICAL | User Interaction: NONE |
Vector: AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:L/A:H | Scope: CHANGED |
| Confidentiality: HIGH |
| Integrity: LOW |
| Availability: HIGH |
| |
References: Resource Id | Reference |
---|
SCAP Repo OVAL Definition | oval:org.secpod.oval:def:30309 |
SCAP Repo OVAL Definition | oval:org.secpod.oval:def:31032 |