Lucene search
K

15 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.13 views

EUVD-2023-23544

Malicious code in bioql PyPI...

7.8CVSS7.7AI score0.01805EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/05/23 2:53 a.m.8 views

CVE-2023-1277

A vulnerability, which was classified as critical, was found in kylin-system-updater up to 1.4.20kord on Ubuntu Kylin. Affected is the function InstallSnap of the component Update Handler. The manipulation leads to command injection. The attack needs to be approached locally. The exploit has been...

7.8CVSS7.5AI score0.01805EPSS
Exploits1References1
OSV
OSV
added 2023/12/25 12:15 a.m.8 views

CVE-2023-7093

A vulnerability classified as critical has been found in KylinSoft kylin-system-updater up to 2.0.5.16-0k2.33. Affected is an unknown function of the file /usr/share/kylin-system-updater/SystemUpdater/UpgradeStrategiesDbus.py of the component com.kylin.systemupgrade Service. The manipulation of t...

7.8CVSS5.2AI score0.00945EPSS
Exploits0References3
Prion
Prion
added 2023/12/25 12:15 a.m.23 views

Command injection

A vulnerability classified as critical has been found in KylinSoft kylin-system-updater up to 2.0.5.16-0k2.33. Affected is an unknown function of the file /usr/share/kylin-system-updater/SystemUpdater/UpgradeStrategiesDbus.py of the component com.kylin.systemupgrade Service. The manipulation of t...

4.3CVSS7.7AI score0.00945EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2023/12/24 11:31 p.m.16 views

CVE-2023-7093 KylinSoft kylin-system-updater com.kylin.systemupgrade Service UpgradeStrategiesDbus.py os command injection

A vulnerability classified as critical has been found in KylinSoft kylin-system-updater up to 2.0.5.16-0k2.33. Affected is an unknown function of the file /usr/share/kylin-system-updater/SystemUpdater/UpgradeStrategiesDbus.py of the component com.kylin.systemupgrade Service. The manipulation of t...

5.3CVSS7.6AI score0.00945EPSS
Exploits0References3
CVE
CVE
added 2023/12/24 11:31 p.m.54 views

CVE-2023-7093

CVE-2023-7093 affects KylinSoft kylin-system-updater up to version 2.0.5.16-0k2.33. The vulnerability resides in UpgradeStrategiesDbus.py (file: /usr/share/kylin-system-updater/SystemUpdater/UpgradeStrategiesDbus.py) of the com.kylin.systemupgrade service, where manipulation of the SetDownloadspe...

7.8CVSS6.5AI score0.00945EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2023/12/24 12:0 a.m.4 views

kylinos kylin-system-updater OS Command Injection Vulnerability

kylinos kylin-system-updater is an operating system component from China's KylinSoft kylinos. An operating system command injection vulnerability exists in KylinSoft kylin-system-updater 2.0.5.16-0k2.33 and earlier versions, which originates in /usr/share/kylin-system-...

7.8CVSS7.5AI score0.00945EPSS
Exploits0References2
OSV
OSV
added 2023/03/08 7:15 p.m.4 views

CVE-2023-1277

A vulnerability, which was classified as critical, was found in kylin-system-updater up to 1.4.20kord on Ubuntu Kylin. Affected is the function InstallSnap of the component Update Handler. The manipulation leads to command injection. The attack needs to be approached locally. The exploit has been...

7.8CVSS6.3AI score0.01805EPSS
Exploits1References3
NVD
NVD
added 2023/03/08 7:15 p.m.34 views

CVE-2023-1277

A vulnerability, which was classified as critical, was found in kylin-system-updater up to 1.4.20kord on Ubuntu Kylin. Affected is the function InstallSnap of the component Update Handler. The manipulation leads to command injection. The attack needs to be approached locally. The exploit has been...

7.8CVSS8.1AI score0.01805EPSS
Exploits1References3
Prion
Prion
added 2023/03/08 7:15 p.m.23 views

Command injection

A vulnerability, which was classified as critical, was found in kylin-system-updater up to 1.4.20kord on Ubuntu Kylin. Affected is the function InstallSnap of the component Update Handler. The manipulation leads to command injection. The attack needs to be approached locally. The exploit has been...

6.8CVSS8AI score0.01805EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2023/03/08 6:6 p.m.64 views

CVE-2023-1277

The CVE-2023-1277 issue affects kylin-system-updater up to 1.4.20kord on Ubuntu Kylin, with the vulnerable component: the InstallSnap function of the Update Handler. The root cause is a command injection vulnerability that can be exploited locally. The vulnerability has been publicly disclosed; e...

7.8CVSS8.1AI score0.01805EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2023/03/08 6:6 p.m.8 views

CVE-2023-1277 kylin-system-updater Update InstallSnap command injection

A vulnerability, which was classified as critical, was found in kylin-system-updater up to 1.4.20kord on Ubuntu Kylin. Affected is the function InstallSnap of the component Update Handler. The manipulation leads to command injection. The attack needs to be approached locally. The exploit has been...

7.8CVSS8.1AI score0.01805EPSS
Exploits1References3
Cvelist
Cvelist
added 2023/03/08 6:6 p.m.37 views

CVE-2023-1277 kylin-system-updater Update InstallSnap command injection

A vulnerability, which was classified as critical, was found in kylin-system-updater up to 1.4.20kord on Ubuntu Kylin. Affected is the function InstallSnap of the component Update Handler. The manipulation leads to command injection. The attack needs to be approached locally. The exploit has been...

7.8CVSS8.2AI score0.01805EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2023/03/08 12:0 a.m.7 views

PT-2023-16856 · Unknown · Kylin-System-Updater

Name of the Vulnerable Software and Affected Versions: kylin-system-updater versions up to 1.4.20kord Description: A critical issue was found in the kylin-system-updater, affecting the InstallSnap function of the Update Handler component. This issue leads to command injection and requires a local...

7.8CVSS7.3AI score0.01805EPSS
Exploits1References6
CNNVD
CNNVD
added 2023/03/08 12:0 a.m.18 views

kylinos kylin-system-updater 操作系统命令注入漏洞

kylinos kylin-system-updater is an operating system component from China Kylin Software kylinos. An operating system command injection vulnerability exists in kylin-system-updater version 1.4.20kord and earlier versions. An attacker could exploit this vulnerability to conduct a command injection...

7.8CVSS7.5AI score0.01805EPSS
Exploits1References4
Rows per page
Query Builder