Lucene search
CanonicalCVELIST:CVE-2019-7306HistoryApr 17, 2020 - 1:45 a.m.
CVE-2019-7306 Byobu apport hook uploads user's ~/.screenrc
2020-04-1701:45:14
canonical
www.cve.org
4
CVSS3
4.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
AI Score
7.2
Confidence
High
EPSS
0.002
Percentile
64.9%
Byobu Apport hook may disclose sensitive information since it automatically uploads the local user’s .screenrc which may contain private hostnames, usernames and passwords. This issue affects: byobu
CNA Affected
[
{
"product": "byobu",
"vendor": "Canonical",
"versions": [
{
"lessThan": "5.128-0ubuntu1",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
openvas
openvas
Ubuntu: Security Advisory (USN-5234-1)
2022-08-26 00:00:00
nvd
nvd
CVE-2019-7306
2020-04-17 02:15:11
cve
cve
CVE-2019-7306
2020-04-17 02:15:11
debiancve
debiancve
CVE-2019-7306
2020-04-17 02:15:11
osv
osv
CGA-x3cc-qrcg-p32h
2024-06-06 12:29:53
byobu vulnerability
2022-01-18 18:29:24
nessus
nessus
Ubuntu 16.04 ESM : Byobu vulnerability (USN-5234-1)
2022-01-19 00:00:00
ubuntu
ubuntu
Byobu vulnerability
2022-01-18 00:00:00
prion
prion
Design/Logic Flaw
2020-04-17 02:15:00
ubuntucve
ubuntucve
CVE-2019-7306
2020-04-17 00:00:00
CVSS3
4.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
AI Score
7.2
Confidence
High
EPSS
0.002
Percentile
64.9%
Related for CVELIST:CVE-2019-7306