GHSA-45w9-c3q7-mccg

Опубликовано: 13 дек. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 8.8

Описание

Usage of user controlled LD_LIBRARY_PATH in agent in Checkmk 2.2.0p10 up to 2.2.0p16 allows malicious Checkmk site user to escalate rights via injection of malicious libraries

Ссылки

EPSS

Процентиль: 32%

0.00122

Низкий

8.8 High

CVSS3

CVE ID

CVE-2023-31210

Дефекты

CWE-427

Связанные уязвимости

CVE-2023-31210

CVSS3: 8.8

ubuntu

около 2 лет назад

Usage of user controlled LD_LIBRARY_PATH in agent in Checkmk 2.2.0p10 up to 2.2.0p16 allows malicious Checkmk site user to escalate rights via injection of malicious libraries

CVE-2023-31210

CVSS3: 8.8

nvd

около 2 лет назад

Usage of user controlled LD_LIBRARY_PATH in agent in Checkmk 2.2.0p10 up to 2.2.0p16 allows malicious Checkmk site user to escalate rights via injection of malicious libraries

CVE-2023-31210

CVSS3: 8.8

debian

около 2 лет назад

Usage of user controlled LD_LIBRARY_PATH in agent in Checkmk 2.2.0p10 ...

EPSS

Процентиль: 32%

0.00122

Низкий

8.8 High

CVSS3

CVE ID

CVE-2023-31210

Дефекты

CWE-427