Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:GHSA-VXF2-7RC3-PXMX
HistoryMay 01, 2022 - 2:00 a.m.

Cheetah Path Search Order Hijacking

2022-05-0102:00:38
Google
osv.dev
5
cheetah 0.9.15
0.9.16
path search
hijacking
arbitrary code
/tmp directory

EPSS

0

Percentile

5.1%

JSON

Cheetah 0.9.15 and 0.9.16 searches the /tmp directory for modules before using the paths in the PYTHONPATH variable, which allows local users to execute arbitrary code via a malicious module in /tmp/.

Related

github 1
nvd 1
cvelist 1
debiancve 1
cve 1
github
github
Cheetah Path Search Order Hijacking
2022-05-01 02:00:38
nvd
nvd
CVE-2005-1632
2005-05-17 04:00:00
cvelist
cvelist
CVE-2005-1632
2005-05-17 04:00:00
debiancve
debiancve
CVE-2005-1632
2005-05-17 04:00:00
cve
cve
CVE-2005-1632
2005-05-17 04:00:00

EPSS

0

Percentile

5.1%

JSON
Related for OSV:GHSA-VXF2-7RC3-PXMX
github1nvd1cvelist1debiancve1cve1