Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2023-27635HistoryMar 05, 2023 - 10:15 p.m.
CVE-2023-27635
2023-03-0522:15:08
Debian Security Bug Tracker
security-tracker.debian.org
16
cve-2023-27635
shell command execution
debian- goodies
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
24.2%
debmany in debian-goodies 0.88.1 allows attackers to execute arbitrary shell commands (because of an eval call) via a crafted .deb file. (The path is shown to the user before execution.)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | debian-goodies | <= 0.88.1 | debian-goodies_0.88.1_all.deb |
| Debian | 11 | all | debian-goodies | <= 0.87 | debian-goodies_0.87_all.deb |
| Debian | 999 | all | debian-goodies | <= 0.88.1 | debian-goodies_0.88.1_all.deb |
| Debian | 13 | all | debian-goodies | <= 0.88.1 | debian-goodies_0.88.1_all.deb |
Related
ubuntu
ubuntu
Debian Goodies vulnerability
2024-03-25 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-6714-1)
2024-03-26 00:00:00
ubuntucve
ubuntucve
CVE-2023-27635
2023-03-05 00:00:00
prion
prion
Design/Logic Flaw
2023-03-05 22:15:00
osv
osv
debian-goodies vulnerability
2024-03-25 15:33:30
cvelist
cvelist
CVE-2023-27635
2023-03-05 00:00:00
nvd
nvd
CVE-2023-27635
2023-03-05 22:15:08
cve
cve
CVE-2023-27635
2023-03-05 22:15:08
nessus
nessus
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
24.2%
Related for DEBIANCVE:CVE-2023-27635