Описание
v86d before 0.1.10 do not verify if received netlink messages are sent by the kernel. This could allow unprivileged users to manipulate the video mode and potentially other consequences.
Ссылки
- Not ApplicableThird Party Advisory
- Mailing ListThird Party Advisory
- Third Party Advisory
- Not ApplicableThird Party Advisory
- Mailing ListThird Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 0.1.10 (исключая)
cpe:2.3:a:v86d_project:v86d:*:*:*:*:*:*:*:*
Конфигурация 2
Одно из
cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
EPSS
Процентиль: 34%
0.00132
Низкий
7.8 High
CVSS3
7.2 High
CVSS2
Дефекты
CWE-863
Связанные уязвимости
CVSS3: 7.8
ubuntu
около 6 лет назад
v86d before 0.1.10 do not verify if received netlink messages are sent by the kernel. This could allow unprivileged users to manipulate the video mode and potentially other consequences.
CVSS3: 7.8
debian
около 6 лет назад
v86d before 0.1.10 do not verify if received netlink messages are sent ...
github
больше 3 лет назад
v86d before 0.1.10 do not verify if received netlink messages are sent by the kernel. This could allow unprivileged users to manipulate the video mode and potentially other consequences.
EPSS
Процентиль: 34%
0.00132
Низкий
7.8 High
CVSS3
7.2 High
CVSS2
Дефекты
CWE-863