Lucene search

Redhat.comRH:CVE-2023-50700

HistoryJul 26, 2024 - 9:01 p.m.

CVE-2023-50700

2024-07-2621:01:57

redhat.com

access.redhat.com

insecure permissions

deepin

d-bus

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

6.8

Confidence

Low

EPSS

Percentile

16.1%

JSON

Insecure Permissions vulnerability in Deepin dde-file-manager 6.0.54 and earlier allows privileged operations to be called by unprivileged users via the D-Bus method.

References

bugzilla.opensuse.org/show_bug.cgi?id=1134131

bugzilla.opensuse.org/show_bug.cgi?id=1134132

bugzilla.redhat.com/show_bug.cgi?id=2300099

github.com/linuxdeepin/developer-center/issues/10007

nvd.nist.gov/vuln/detail/CVE-2023-50700

www.cve.org/CVERecord?id=CVE-2023-50700

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

6.8

Confidence

Low

EPSS

Percentile

16.1%

JSON

Related for RH:CVE-2023-50700