CVE-2023-49347

Опубликовано: 14 дек. 2023

Источник: nvd

CVSS3: 6

CVSS3: 7.8

EPSS Низкий

Описание

Temporary data passed between application components by Budgie Extras Windows Previews could potentially be viewed or manipulated. The data is stored in a location that is accessible to any user who has local access to the system. Attackers may read private information from windows, present false information to users, or deny access to the application.

Ссылки

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-49347
Third Party Advisory
https://github.com/UbuntuBudgie/budgie-extras/security/advisories/GHSA-xxfq-fqfp-cpvj
Third Party Advisory
https://ubuntu.com/security/notices/USN-6556-1
Vendor Advisory
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-49347
Third Party Advisory
https://github.com/UbuntuBudgie/budgie-extras/security/advisories/GHSA-xxfq-fqfp-cpvj
Third Party Advisory
https://ubuntu.com/security/notices/USN-6556-1
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:ubuntubudgie:budgie_extras:*:*:*:*:*:*:*:*

Версия от 1.4.0 (включая) до 1.7.1 (исключая)

EPSS

Процентиль: 18%

0.00055

Низкий

6 Medium

CVSS3

7.8 High

CVSS3

Дефекты

CWE-377

CWE-668

Связанные уязвимости

CVE-2023-49347

CVSS3: 6

ubuntu

около 2 лет назад

CVE-2023-49347

CVSS3: 6

debian

около 2 лет назад

Temporary data passed between application components by Budgie Extras ...

EPSS

Процентиль: 18%

0.00055

Низкий

6 Medium

CVSS3

7.8 High

CVSS3

Дефекты

CWE-377

CWE-668