CVE-2023-36250

Опубликовано: 14 сент. 2023

Источник: ubuntu

Приоритет: medium

CVSS3: 7.8

Описание

CSV Injection vulnerability in GNOME time tracker version 3.0.2, allows local attackers to execute arbitrary code via crafted .tsv file when creating a new record.

Релиз	Статус	Примечание
bionic	ignored	end of standard support
devel	needs-triage
esm-apps/jammy	needs-triage
esm-apps/noble	needs-triage
esm-infra/focal	DNE
focal	DNE
jammy	needs-triage
lunar	ignored	end of life, was needs-triage
mantic	ignored	end of life, was needs-triage
noble	needs-triage

Показывать по

Ссылки на источники

https://www.cve.org/CVERecord?id=CVE-2023-36250

7.8 High

CVSS3

Связанные уязвимости

CVE-2023-36250

CVSS3: 7.8

nvd

больше 2 лет назад

CSV Injection vulnerability in GNOME time tracker version 3.0.2, allows local attackers to execute arbitrary code via crafted .tsv file when creating a new record.

CVE-2023-36250

CVSS3: 7.8

debian

больше 2 лет назад

CSV Injection vulnerability in GNOME time tracker version 3.0.2, allow ...

GHSA-v7fv-52xm-3gvg

CVSS3: 7.8

github

больше 2 лет назад

CSV Injection vulnerability in GNOME time tracker version 3.0.2, allows local attackers to execute arbitrary code via crafted .tsv file when creating a new record.

7.8 High

CVSS3

CVE-2023-36250

Описание

Пакет hamster-time-tracker

Ссылки на источники

Связанные уязвимости