Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2022-45062

Опубликовано: 09 нояб. 2022
Источник: debian
EPSS Низкий

Описание

In Xfce xfce4-settings before 4.16.4 and 4.17.x before 4.17.1, there is an argument injection vulnerability in xfce4-mime-helper.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
xfce4-settingsfixed4.16.4-1package
xfce4-settingsnot-affectedbusterpackage

Примечания

  • https://gitlab.xfce.org/xfce/xfce4-settings/-/issues/390

  • https://gitlab.xfce.org/xfce/xfce4-settings/-/commit/f34a92a84f96268ad24a7a13fd5edc9f1d526110 (xfce4-settings-4.17.1)

  • https://gitlab.xfce.org/xfce/xfce4-settings/-/commit/55e3c5fb667e96ad1412cf249879262b369d28d7 (xfce4-settings-4.16.4)

  • Regression from the CVE fix with filenames with spaces:

  • https://gitlab.xfce.org/xfce/xfce4-settings/-/issues/403

  • https://gitlab.xfce.org/xfce/xfce4-settings/-/merge_requests/85

EPSS

Процентиль: 87%
0.03547
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2022-45062

CVSS3: 9.8
ubuntu
около 3 лет назад

In Xfce xfce4-settings before 4.16.4 and 4.17.x before 4.17.1, there is an argument injection vulnerability in xfce4-mime-helper.

nvd логотип

CVE-2022-45062

CVSS3: 9.8
nvd
около 3 лет назад

In Xfce xfce4-settings before 4.16.4 and 4.17.x before 4.17.1, there is an argument injection vulnerability in xfce4-mime-helper.

github логотип

GHSA-5684-vxhc-x77c

CVSS3: 9.8
github
около 3 лет назад

In Xfce xfce4-settings before 4.16.4 and 4.17.x before 4.17.1, there is an argument injection vulnerability in xfce4-mime-helper.

EPSS

Процентиль: 87%
0.03547
Низкий