CVE-2020-9759

Опубликовано: 23 мар. 2020

Источник: nvd

CVSS3: 4.6

CVSS3: 7.8

CVSS2: 9.3

EPSS Низкий

Описание

A Vulnerability of LG Electronic web OS TV Emulator could allow an attacker to escalate privileges and overwrite certain files. This vulnerability is due to wrong environment setting. An attacker could exploit this vulnerability through crafted configuration files and executable files.

Ссылки

https://blog.recurity-labs.com/2021-02-03/webOS_Pt1.html
Exploit
Third Party Advisory
https://lists.debian.org/debian-lts-announce/2021/09/msg00018.html
Mailing List
Not Applicable
Third Party Advisory
https://blog.recurity-labs.com/2021-02-03/webOS_Pt1.html
Exploit
Third Party Advisory
https://lists.debian.org/debian-lts-announce/2021/09/msg00018.html
Mailing List
Not Applicable
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:lg:webos:-:*:*:*:*:*:*:*

EPSS

Процентиль: 37%

0.00157

Низкий

4.6 Medium

CVSS3

7.8 High

CVSS3

9.3 Critical

CVSS2

Дефекты

CWE-494

Связанные уязвимости

CVE-2020-9759

CVSS3: 4.6

ubuntu

почти 6 лет назад

CVE-2020-9759

CVSS3: 4.6

debian

почти 6 лет назад

A Vulnerability of LG Electronic web OS TV Emulator could allow an att ...

GHSA-j24f-gw9v-x4vp

CVSS3: 7.8

github

больше 3 лет назад

An issue was discovered in WeeChat before 2.7.1 (0.4.0 to 2.7 are affected). A malformed message 352 (who) can cause a NULL pointer dereference in the callback function, resulting in a crash.

EPSS

Процентиль: 37%

0.00157

Низкий

4.6 Medium

CVSS3

7.8 High

CVSS3

9.3 Critical

CVSS2

Дефекты

CWE-494