Lucene search
GoogleOSV:CVE-2022-23220HistoryJan 21, 2022 - 4:15 p.m.
CVE-2022-23220
2022-01-2116:15:08
Google
osv.dev
8
usbview security vulnerability
arbitrary code execution
polkit settings
ubuntu
debian
gentoo
EPSS
0
Percentile
14.2%
USBView 2.1 before 2.2 allows some local users (e.g., ones logged in via SSH) to execute arbitrary code as root because certain Polkit settings (e.g., allow_any=yes) for pkexec disable the authentication requirement. Code execution can, for example, use the --gtk-module option. This affects Ubuntu, Debian, and Gentoo.
Related
ubuntu
ubuntu
USBView vulnerability
2022-01-21 00:00:00
debiancve
debiancve
CVE-2022-23220
2022-01-21 16:15:08
nessus
nessus
Ubuntu 18.04 LTS / 20.04 LTS : USBView vulnerability (USN-5249-1)
2022-01-22 00:00:00
Debian DSA-5052-1 : usbview - security update
2022-01-21 00:00:00
osv
osv
usbview-3.0-1.1 on GA media
2024-06-15 00:00:00
usbview vulnerability
2022-01-21 14:24:14
usbview - security update
2022-01-21 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-5052-1)
2022-01-22 00:00:00
Fedora: Security Advisory for usbview (FEDORA-2022-421e65c5d4)
2022-02-02 00:00:00
Ubuntu: Security Advisory (USN-5249-1)
2022-01-22 00:00:00
cve
cve
CVE-2022-23220
2022-01-21 16:15:08
prion
prion
Authentication flaw
2022-01-21 16:15:00
fedora
fedora
[SECURITY] Fedora 34 Update: usbview-3.0-1.fc34
2022-02-01 01:06:17
[SECURITY] Fedora 35 Update: usbview-3.0-1.fc35
2022-02-01 01:12:26
cvelist
cvelist
CVE-2022-23220
2022-01-21 00:00:00
veracode
veracode
Privilege Escalation
2022-01-23 19:35:46
ubuntucve
ubuntucve
CVE-2022-23220
2022-01-21 00:00:00
gentoo
gentoo
USBView: root privilege escalation via insecure polkit settings
2023-10-26 00:00:00
debian
debian
[SECURITY] [DSA 5052-1] usbview security update
2022-01-21 15:10:04
nvd
nvd
CVE-2022-23220
2022-01-21 16:15:08