CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
AI Score
Confidence
High
EPSS
Percentile
5.1%
Kdbg 1.1.0 through 1.2.8 does not check permissions of the .kdbgrc file, which allows local users to execute arbitrary commands.
Vendor | Product | Version | CPE |
---|---|---|---|
johannes_sixt | kdbg | 1.2.0 | cpe:/a:johannes_sixt:kdbg:1.2.0::: |
johannes_sixt | kdbg | 1.1.7 | cpe:/a:johannes_sixt:kdbg:1.1.7::: |
johannes_sixt | kdbg | 1.1.0 | cpe:/a:johannes_sixt:kdbg:1.1.0::: |
johannes_sixt | kdbg | 1.2.2 | cpe:/a:johannes_sixt:kdbg:1.2.2::: |
johannes_sixt | kdbg | 1.1.1 | cpe:/a:johannes_sixt:kdbg:1.1.1::: |
johannes_sixt | kdbg | 1.2.5 | cpe:/a:johannes_sixt:kdbg:1.2.5::: |
johannes_sixt | kdbg | 1.1.3 | cpe:/a:johannes_sixt:kdbg:1.1.3::: |
johannes_sixt | kdbg | 1.2.7 | cpe:/a:johannes_sixt:kdbg:1.2.7::: |
johannes_sixt | kdbg | 1.2.4 | cpe:/a:johannes_sixt:kdbg:1.2.4::: |
johannes_sixt | kdbg | 1.1.4 | cpe:/a:johannes_sixt:kdbg:1.1.4::: |