Lucene search
Redhat.comRH:CVE-2022-1537HistoryMay 11, 2022 - 1:28 a.m.
CVE-2022-1537
2022-05-1101:28:49
redhat.com
access.redhat.com
26
0.0004 Low
EPSS
Percentile
5.2%
A flaw was found in the GruntJS package during file.copy operations. This vulnerability is capable of arbitrary file writes, that can lead to local privilege escalation to the GruntJS user if a lower-privileged user has write access to both source and destination directories. This flaw allows a lower-privileged user to create a symlink to the GruntJS user’s .bashrc file or replace /etc/shadow file if the GruntJS user is root.
Related
nessus
nessus
Debian DLA-3383-1 : grunt - LTS security update
2023-04-05 00:00:00
osv
osv
CVE-2022-1537
2022-05-10 14:15:08
grunt - security update
2023-04-05 00:00:00
Race Condition in Grunt
2022-05-11 00:01:37
veracode
veracode
Time-of-check To Time-of-Use (TOCTOU)
2022-05-11 13:29:53
debiancve
debiancve
CVE-2022-1537
2022-05-10 14:15:00
openvas
openvas
Debian: Security Advisory (DLA-3383-1)
2023-04-06 00:00:00
Ubuntu: Security Advisory (USN-5847-1)
2023-02-08 00:00:00
prion
prion
Race condition
2022-05-10 14:15:00
huntr
huntr
debian
debian
[SECURITY] [DLA 3383-1] grunt security update
2023-04-05 20:00:49
cvelist
cvelist
cve
cve
CVE-2022-1537
2022-05-10 14:15:00
github
github
Race Condition in Grunt
2022-05-11 00:01:37
ubuntucve
ubuntucve
CVE-2022-1537
2022-05-10 00:00:00
ubuntu
ubuntu
Grunt vulnerabilities
2023-02-07 00:00:00
