4 matches found
openSUSE 15 Security Update : EternalTerminal (openSUSE-SU-2022:10187-1)
The remote SUSE Linux SUSE15 host has a package installed that is affected by multiple vulnerabilities as referenced in the openSUSE-SU-2022:10187-1 advisory. - A privilege escalation to root exists in Eternal Terminal prior to version 6.2.0. This is due to the combination of a race condition,...
Security update for EternalTerminal (important)
openSUSE Security Update: Security update for EternalTerminal Announcement ID: openSUSE-SU-2022:10185-1 Rating: important References: 1202432 1202433 1202434 1202435 Cross-References: CVE-2022-24949 CVE-2022-24950 CVE-2022-24951 CVE-2022-24952 CVSS scores: CVE-2022-24949 NVD : 7.5...
CVE-2022-24950
EternalTerminal vulnerability CVE-2022-24950 exists in versions prior to 6.2.0. The issue is a race condition in UserTerminalRouter::getInfoForId() that lets an authenticated attacker hijack other users’ SSH authorization sockets, enabling logins to other systems as targeted users. The problem is...
CVE-2022-24950
A race condition exists in Eternal Terminal prior to version 6.2.0 that allows an authenticated attacker to hijack other users' SSH authorization socket, enabling the attacker to login to other systems as the targeted users. The bug is in UserTerminalRouter::getInfoForId...