Описание
KDE before 3.3.0 does not properly handle when certain symbolic links point to "stale" locations, which could allow local users to create or truncate arbitrary files.
Ссылки
- Broken Link
- Mailing List
- Broken LinkPatchVendor Advisory
- Third Party Advisory
- Third Party Advisory
- PatchVendor Advisory
- Third Party AdvisoryVDB Entry
- Broken Link
- Broken Link
- Mailing List
- Broken LinkPatchVendor Advisory
- Third Party Advisory
- Third Party Advisory
- PatchVendor Advisory
- Third Party AdvisoryVDB Entry
- Broken Link
Уязвимые конфигурации
Конфигурация 1Версия до 3.3 (исключая)
cpe:2.3:o:kde:kde:*:*:*:*:*:*:*:*
Конфигурация 2
cpe:2.3:o:debian:debian_linux:3.0:*:*:*:*:*:*:*
EPSS
Процентиль: 6%
0.00029
Низкий
7.1 High
CVSS3
4.6 Medium
CVSS2
Дефекты
CWE-59
Связанные уязвимости
redhat
около 21 года назад
KDE before 3.3.0 does not properly handle when certain symbolic links point to "stale" locations, which could allow local users to create or truncate arbitrary files.
CVSS3: 7.1
debian
почти 21 год назад
KDE before 3.3.0 does not properly handle when certain symbolic links ...
CVSS3: 7.1
github
больше 3 лет назад
KDE before 3.3.0 does not properly handle when certain symbolic links point to "stale" locations, which could allow local users to create or truncate arbitrary files.
EPSS
Процентиль: 6%
0.00029
Низкий
7.1 High
CVSS3
4.6 Medium
CVSS2
Дефекты
CWE-59