GHSA-v9hv-wgmv-7qj2

Опубликовано: 26 мая 2025

Источник: github

Github: Не прошло ревью

CVSS4: 5.7

CVSS3: 5.5

Описание

Screen version 5.0.0 and older version 4 releases have a TOCTOU race potentially allowing to send SIGHUP, SIGCONT to privileged processes when installed setuid-root.

Ссылки

EPSS

Процентиль: 2%

0.00015

Низкий

5.7 Medium

CVSS4

5.5 Medium

CVSS3

CVE ID

CVE-2025-46805

Дефекты

CWE-367

Связанные уязвимости

CVE-2025-46805

CVSS3: 5.5

ubuntu

3 месяца назад

Screen version 5.0.0 and older version 4 releases have a TOCTOU race potentially allowing to send SIGHUP, SIGCONT to privileged processes when installed setuid-root.

CVE-2025-46805

CVSS3: 5.5

redhat

3 месяца назад

Screen version 5.0.0 and older version 4 releases have a TOCTOU race potentially allowing to send SIGHUP, SIGCONT to privileged processes when installed setuid-root.

CVE-2025-46805

CVSS3: 5.5

nvd

3 месяца назад

Screen version 5.0.0 and older version 4 releases have a TOCTOU race potentially allowing to send SIGHUP, SIGCONT to privileged processes when installed setuid-root.

CVE-2025-46805

CVSS3: 5.5

debian

3 месяца назад

Screen version 5.0.0 and older version 4 releases have a TOCTOU race ...

EPSS

Процентиль: 2%

0.00015

Низкий

5.7 Medium

CVSS4

5.5 Medium

CVSS3

CVE ID

CVE-2025-46805

Дефекты

CWE-367