CVE-2023-28144

Опубликовано: 14 мар. 2023

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS3: 7

Описание

KDAB Hotspot 1.3.x and 1.4.x through 1.4.1, in a non-default configuration, allows privilege escalation because of race conditions involving symlinks and elevate_perf_privileges.sh chown calls.

Релиз	Статус	Примечание
bionic	DNE
devel	DNE
esm-apps/focal	needs-triage
esm-apps/jammy	needs-triage
esm-apps/noble	needs-triage
focal	ignored	end of standard support, was needs-triage
jammy	needs-triage
kinetic	ignored	end of life, was needs-triage
lunar	ignored	end of life, was needs-triage
mantic	ignored	end of life, was needs-triage

Показывать по

Ссылки на источники

EPSS

Процентиль: 13%

0.00043

Низкий

7 High

CVSS3

Связанные уязвимости

CVE-2023-28144

CVSS3: 7

nvd

почти 3 года назад

KDAB Hotspot 1.3.x and 1.4.x through 1.4.1, in a non-default configuration, allows privilege escalation because of race conditions involving symlinks and elevate_perf_privileges.sh chown calls.

CVE-2023-28144

CVSS3: 7

debian

почти 3 года назад

KDAB Hotspot 1.3.x and 1.4.x through 1.4.1, in a non-default configura ...

GHSA-r4wr-r3pf-8cvw

CVSS3: 7

github

почти 3 года назад

KDAB Hotspot 1.3.x and 1.4.x through 1.4.1, in a non-default configuration, allows privilege escalation because of race conditions involving symlinks and elevate_perf_privileges.sh chown calls.

EPSS

Процентиль: 13%

0.00043

Низкий

7 High

CVSS3

CVE-2023-28144

Описание

Пакет hotspot

Ссылки на источники

Связанные уязвимости