exploitDog

CVE-2022-40673

Опубликовано: 14 сент. 2022

Источник: nvd

CVSS3: 7.8

EPSS Низкий

Описание

KDiskMark before 3.1.0 lacks authorization checking for D-Bus methods such as Helper::flushPageCache.

Ссылки

http://www.openwall.com/lists/oss-security/2022/09/14/1
Exploit
Issue Tracking
Mailing List
Third Party Advisory
https://github.com/JonMagon/KDiskMark/commit/3c90083a4f5ba3f240a797e509d818221542bbdc
Patch
Third Party Advisory
https://github.com/JonMagon/KDiskMark/compare/3.0.0...3.1.0
Release Notes
Third Party Advisory
https://github.com/JonMagon/KDiskMark/releases/tag/3.1.0
Release Notes
Third Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YYO3GWTNPHNCLHSI562Q3KX43PW7FQ4Q/
http://www.openwall.com/lists/oss-security/2022/09/14/1
Exploit
Issue Tracking
Mailing List
Third Party Advisory
https://github.com/JonMagon/KDiskMark/commit/3c90083a4f5ba3f240a797e509d818221542bbdc
Patch
Third Party Advisory
https://github.com/JonMagon/KDiskMark/compare/3.0.0...3.1.0
Release Notes
Third Party Advisory
https://github.com/JonMagon/KDiskMark/releases/tag/3.1.0
Release Notes
Third Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YYO3GWTNPHNCLHSI562Q3KX43PW7FQ4Q/

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:kdiskmark_project:kdiskmark:*:*:*:*:*:*:*:*

Версия до 3.1.0 (исключая)

Конфигурация 2

cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*

EPSS

Процентиль: 23%

0.00076

Низкий

7.8 High

CVSS3

Дефекты

CWE-862

Связанные уязвимости

GHSA-jfq2-j4qj-4p6f

CVSS3: 7.8

github

больше 3 лет назад

KDiskMark before 3.1.0 lacks authorization checking for D-Bus methods such as Helper::flushPageCache.

EPSS

Процентиль: 23%

0.00076

Низкий

7.8 High

CVSS3

Дефекты

CWE-862