Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

29 matches found

Ubuntu
Ubuntuadded 2022/01/21 2:24 p.m.82 views

USN-5249-1: USBView vulnerability

It was discovered that USBView allowed unprivileged users to run usbview as root. A local attacker could use this vulnerability to gain administrative privileges or cause a denial of service...

7.8CVSS7.2AI score0.00103EPSS
Exploits1
Cvelist
Cvelistadded 2022/01/21 12:0 a.m.11 views

CVE-2022-23220

USBView 2.1 before 2.2 allows some local users e.g., ones logged in via SSH to execute arbitrary code as root because certain Polkit settings e.g., allowany=yes for pkexec disable the authentication requirement. Code execution can, for example, use the --gtk-module option. This affects Ubuntu,...

8.2AI score0.00103EPSS
Exploits1References5
OSV
OSVadded 2022/01/21 12:0 a.m.0 views

UBUNTU-CVE-2022-23220

USBView 2.1 before 2.2 allows some local users e.g., ones logged in via SSH to execute arbitrary code as root because certain Polkit settings e.g., allowany=yes for pkexec disable the authentication requirement. Code execution can, for example, use the --gtk-module option. This affects Ubuntu,...

7.8CVSS6.3AI score0.00103EPSS
Exploits1References3
UbuntuCve
UbuntuCveadded 2022/01/21 12:0 a.m.29 views

CVE-2022-23220

USBView 2.1 before 2.2 allows some local users e.g., ones logged in via SSH to execute arbitrary code as root because certain Polkit settings e.g., allowany=yes for pkexec disable the authentication requirement. Code execution can, for example, use the --gtk-module option. This affects Ubuntu,...

7.8CVSS7.6AI score0.00103EPSS
Exploits1References2
OSV
OSVadded 2022/01/21 12:0 a.m.18 views

DSA-5052-1 usbview - security update

Bulletin has no description...

7.8CVSS7.4AI score0.00103EPSS
Exploits1
Tenable Nessus
Tenable Nessusadded 2022/01/21 12:0 a.m.22 views

Debian DSA-5052-1 : usbview - security update

The remote Debian 10 / 11 host has a package installed that is affected by a vulnerability as referenced in the dsa-5052 advisory. - USBView 2.1 before 2.2 allows some local users e.g., ones logged in via SSH to execute arbitrary code as root because certain Polkit settings e.g., allowany=yes for...

7.8CVSS8AI score0.00103EPSS
Exploits1References6
CVE
CVEadded 2022/01/21 12:0 a.m.112 views

CVE-2022-23220

USBView (firmware: Ubuntu/Debian/Gentoo package usbview) is affected by CVE-2022-23220. The root cause is insecure Polkit configuration (example: allow_any=yes for pkexec) that disables authentication, allowing local users (including those via SSH) to execute code as root. Affected version: USBVi...

7.8CVSS7.8AI score0.00103EPSS
Exploits1References5Affected Software1
CNNVD
CNNVDadded 2022/01/21 12:0 a.m.3 views

USBView 访问控制错误漏洞

USBView is a USB viewer for Linux. An access control error vulnerability exists in USBView that stems from certain Polkit settings in the product that disable privilege authentication. An attacker can execute arbitrary code as root with the -gtk-module option. The following products and versions...

7.8CVSS7.7AI score0.00103EPSS
Exploits1References11
Debian CVE
Debian CVEadded 2022/01/21 12:0 a.m.27 views

CVE-2022-23220

USBView 2.1 before 2.2 allows some local users e.g., ones logged in via SSH to execute arbitrary code as root because certain Polkit settings e.g., allowany=yes for pkexec disable the authentication requirement. Code execution can, for example, use the --gtk-module option. This affects Ubuntu,...

7.8CVSS8AI score0.00103EPSS
Exploits1
Rows per page
Query Builder