Lucene search
+L

6 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 3:48 a.m.2 views

SUSE CVE-2021-3709

Function checkattachmentforerrors in file data/general-hooks/ubuntu.py could be tricked into exposing private data via a constructed crash file. This issue affects: apport 2.14.1 versions prior to 2.14.1-0ubuntu3.29+esm8; 2.20.1 versions prior to 2.20.1-0ubuntu2.30+esm2; 2.20.9 versions prior to...

6.5CVSS5.6AI score0.00448EPSS
Exploits1References3
NVD
NVD
added 2021/10/01 3:15 a.m.27 views

CVE-2021-3709

Function checkattachmentforerrors in file data/general-hooks/ubuntu.py could be tricked into exposing private data via a constructed crash file. This issue affects: apport 2.14.1 versions prior to 2.14.1-0ubuntu3.29+esm8; 2.20.1 versions prior to 2.20.1-0ubuntu2.30+esm2; 2.20.9 versions prior to...

6.5CVSS0.00448EPSS
Exploits1References4
OSV
OSV
added 2021/10/01 3:15 a.m.4 views

CVE-2021-3709

Function checkattachmentforerrors in file data/general-hooks/ubuntu.py could be tricked into exposing private data via a constructed crash file. This issue affects: apport 2.14.1 versions prior to 2.14.1-0ubuntu3.29+esm8; 2.20.1 versions prior to 2.20.1-0ubuntu2.30+esm2; 2.20.9 versions prior to...

5.5CVSS6.3AI score0.00448EPSS
Exploits1References4
OSV
OSV
added 2017/07/18 8:29 p.m.5 views

CVE-2017-10708

An issue was discovered in Apport through 2.20.x. In apport/report.py, Apport sets the ExecutablePath field and it then uses the path to run package specific hooks without protecting against path traversal. This allows remote attackers to execute arbitrary code via a crafted .crash file...

7.8CVSS6.1AI score0.02099EPSS
Exploits0References2
OSV
OSV
added 2017/07/18 6:0 p.m.28 views

UBUNTU-CVE-2017-10708

An issue was discovered in Apport through 2.20.x. In apport/report.py, Apport sets the ExecutablePath field and it then uses the path to run package specific hooks without protecting against path traversal. This allows remote attackers to execute arbitrary code via a crafted .crash file...

7.8CVSS7.5AI score0.02099EPSS
Exploits0References3
canvas
canvas
added 2016/12/17 3:59 a.m.524 views

Immunity Canvas: APPORT_CRASH_HANDLER

Name| apportcrashhandler ---|--- CVE| CVE-2016-9949 Exploit Pack| CANVAS Description| Ubuntu Apport Crash Handler RCE Notes| CVE Name: CVE-2016-9949 Vendor: Ubuntu Notes: This module creates a crafted Apport crash file report that seems to be a simple text file. When the text file is double click...

9.3CVSS0.6AI score0.17726EPSS
Exploits6
Rows per page
Query Builder