Lucene search

K
cvelistMitreCVELIST:CVE-2013-6774
HistoryMar 30, 2014 - 10:00 a.m.

CVE-2013-6774

2014-03-3010:00:00
mitre
www.cve.org
2

6.5 Medium

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

73.9%

Untrusted search path vulnerability in the ChainsDD Superuser package 3.1.3 for Android 4.2.x and earlier, CyanogenMod/ClockWorkMod/Koush Superuser package 1.0.2.1 for Android 4.2.x and earlier, and Chainfire SuperSU package before 1.69 for Android 4.2.x and earlier allows attackers to load an arbitrary .jar file and gain privileges via a crafted BOOTCLASSPATH environment variable for a /system/xbin/su process. NOTE: another researcher was unable to reproduce this with ChainsDD Superuser.

6.5 Medium

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

73.9%

Related for CVELIST:CVE-2013-6774