15 matches found
EUVD-2023-23544
Malicious code in bioql PyPI...
CVE-2023-1277
A vulnerability, which was classified as critical, was found in kylin-system-updater up to 1.4.20kord on Ubuntu Kylin. Affected is the function InstallSnap of the component Update Handler. The manipulation leads to command injection. The attack needs to be approached locally. The exploit has been...
CVE-2023-7093
A vulnerability classified as critical has been found in KylinSoft kylin-system-updater up to 2.0.5.16-0k2.33. Affected is an unknown function of the file /usr/share/kylin-system-updater/SystemUpdater/UpgradeStrategiesDbus.py of the component com.kylin.systemupgrade Service. The manipulation of t...
Command injection
A vulnerability classified as critical has been found in KylinSoft kylin-system-updater up to 2.0.5.16-0k2.33. Affected is an unknown function of the file /usr/share/kylin-system-updater/SystemUpdater/UpgradeStrategiesDbus.py of the component com.kylin.systemupgrade Service. The manipulation of t...
CVE-2023-7093 KylinSoft kylin-system-updater com.kylin.systemupgrade Service UpgradeStrategiesDbus.py os command injection
A vulnerability classified as critical has been found in KylinSoft kylin-system-updater up to 2.0.5.16-0k2.33. Affected is an unknown function of the file /usr/share/kylin-system-updater/SystemUpdater/UpgradeStrategiesDbus.py of the component com.kylin.systemupgrade Service. The manipulation of t...
CVE-2023-7093
CVE-2023-7093 affects KylinSoft kylin-system-updater up to version 2.0.5.16-0k2.33. The vulnerability resides in UpgradeStrategiesDbus.py (file: /usr/share/kylin-system-updater/SystemUpdater/UpgradeStrategiesDbus.py) of the com.kylin.systemupgrade service, where manipulation of the SetDownloadspe...
kylinos kylin-system-updater OS Command Injection Vulnerability
kylinos kylin-system-updater is an operating system component from China's KylinSoft kylinos. An operating system command injection vulnerability exists in KylinSoft kylin-system-updater 2.0.5.16-0k2.33 and earlier versions, which originates in /usr/share/kylin-system-...
CVE-2023-1277
A vulnerability, which was classified as critical, was found in kylin-system-updater up to 1.4.20kord on Ubuntu Kylin. Affected is the function InstallSnap of the component Update Handler. The manipulation leads to command injection. The attack needs to be approached locally. The exploit has been...
CVE-2023-1277
A vulnerability, which was classified as critical, was found in kylin-system-updater up to 1.4.20kord on Ubuntu Kylin. Affected is the function InstallSnap of the component Update Handler. The manipulation leads to command injection. The attack needs to be approached locally. The exploit has been...
Command injection
A vulnerability, which was classified as critical, was found in kylin-system-updater up to 1.4.20kord on Ubuntu Kylin. Affected is the function InstallSnap of the component Update Handler. The manipulation leads to command injection. The attack needs to be approached locally. The exploit has been...
CVE-2023-1277
The CVE-2023-1277 issue affects kylin-system-updater up to 1.4.20kord on Ubuntu Kylin, with the vulnerable component: the InstallSnap function of the Update Handler. The root cause is a command injection vulnerability that can be exploited locally. The vulnerability has been publicly disclosed; e...
CVE-2023-1277 kylin-system-updater Update InstallSnap command injection
A vulnerability, which was classified as critical, was found in kylin-system-updater up to 1.4.20kord on Ubuntu Kylin. Affected is the function InstallSnap of the component Update Handler. The manipulation leads to command injection. The attack needs to be approached locally. The exploit has been...
CVE-2023-1277 kylin-system-updater Update InstallSnap command injection
A vulnerability, which was classified as critical, was found in kylin-system-updater up to 1.4.20kord on Ubuntu Kylin. Affected is the function InstallSnap of the component Update Handler. The manipulation leads to command injection. The attack needs to be approached locally. The exploit has been...
PT-2023-16856 · Unknown · Kylin-System-Updater
Name of the Vulnerable Software and Affected Versions: kylin-system-updater versions up to 1.4.20kord Description: A critical issue was found in the kylin-system-updater, affecting the InstallSnap function of the Update Handler component. This issue leads to command injection and requires a local...
kylinos kylin-system-updater 操作系统命令注入漏洞
kylinos kylin-system-updater is an operating system component from China Kylin Software kylinos. An operating system command injection vulnerability exists in kylin-system-updater version 1.4.20kord and earlier versions. An attacker could exploit this vulnerability to conduct a command injection...