CVE-2022-24952

Опубликовано: 16 авг. 2022

Источник: nvd

CVSS3: 6.5

EPSS Низкий

Описание

Several denial of service vulnerabilities exist in Eternal Terminal prior to version 6.2.0, including a DoS triggered remotely by an invalid sequence number and a local bug triggered by invalid input sent directly to the IPC socket.

Ссылки

http://www.openwall.com/lists/oss-security/2023/02/16/1
https://github.com/MisterTea/EternalTerminal/releases/tag/et-v6.2.0
Third Party Advisory
https://github.com/metaredteam/external-disclosures/security/advisories/GHSA-8cw3-6r98-g7cw
Exploit
Third Party Advisory
http://www.openwall.com/lists/oss-security/2023/02/16/1
https://github.com/MisterTea/EternalTerminal/releases/tag/et-v6.2.0
Third Party Advisory
https://github.com/metaredteam/external-disclosures/security/advisories/GHSA-8cw3-6r98-g7cw
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:eternal_terminal_project:eternal_terminal:*:*:*:*:*:*:*:*

Версия до 6.2.0 (исключая)

EPSS

Процентиль: 64%

0.00478

Низкий

6.5 Medium

CVSS3

Дефекты

CWE-20

Связанные уязвимости

CVE-2022-24952

CVSS3: 6.5

debian

больше 3 лет назад

Several denial of service vulnerabilities exist in Eternal Terminal pr ...

openSUSE-SU-2022:10187-1

suse-cvrf

больше 3 лет назад

Security update for EternalTerminal

openSUSE-SU-2022:10185-1

suse-cvrf

больше 3 лет назад

Security update for EternalTerminal

EPSS

Процентиль: 64%

0.00478

Низкий

6.5 Medium

CVSS3

Дефекты

CWE-20