CVSS2
Attack Vector
LOCAL
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:H/Au:N/C:C/I:C/A:C
AI Score
Confidence
High
EPSS
Percentile
5.1%
Untrusted search path vulnerability in the script function in Lunascape before 6.4.3 allows local users to gain privileges via a Trojan horse executable file in the current working directory.
Vendor | Product | Version | CPE |
---|---|---|---|
lunascape | lunascape | * | cpe:2.3:a:lunascape:lunascape:*:*:*:*:*:*:*:* |
lunascape | lunascape | 3.0.0 | cpe:2.3:a:lunascape:lunascape:3.0.0:*:*:*:*:*:*:* |
lunascape | lunascape | 3.0.1 | cpe:2.3:a:lunascape:lunascape:3.0.1:*:*:*:*:*:*:* |
lunascape | lunascape | 3.1.0 | cpe:2.3:a:lunascape:lunascape:3.1.0:*:*:*:*:*:*:* |
lunascape | lunascape | 3.5.0 | cpe:2.3:a:lunascape:lunascape:3.5.0:*:*:*:*:*:*:* |
lunascape | lunascape | 3.5.1 | cpe:2.3:a:lunascape:lunascape:3.5.1:*:*:*:*:*:*:* |
lunascape | lunascape | 3.5.2 | cpe:2.3:a:lunascape:lunascape:3.5.2:*:*:*:*:*:*:* |
lunascape | lunascape | 3.5.3 | cpe:2.3:a:lunascape:lunascape:3.5.3:*:*:*:*:*:*:* |
lunascape | lunascape | 3.5.4 | cpe:2.3:a:lunascape:lunascape:3.5.4:*:*:*:*:*:*:* |
lunascape | lunascape | 3.6.0 | cpe:2.3:a:lunascape:lunascape:3.6.0:*:*:*:*:*:*:* |