Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

23 matches found

CVE
CVEadded 2012/09/18 5:0 p.m.60 views

CVE-2012-4425

The CVE affects spice-gtk (and possibly other products) where libgio is used in setuid/privileged contexts. The root cause is inadequate sanitization of the DBUS_SYSTEM_BUS_ADDRESS environment variable, enabling a local attacker to gain escalated privileges and execute arbitrary code. Evidence in...

6.9CVSS7.1AI score0.01093EPSS
Exploits1References9Affected Software2
RedHat Linux
RedHat Linuxadded 2012/09/17 4:46 p.m.2 views

spice-gtk/glib: Possible privilege escalation via un-sanitized environment variable

libgio, when used in setuid or other privileged programs in spice-gtk and possibly other products, allows local users to gain privileges and execute arbitrary code via the DBUSSYSTEMBUSADDRESS environment variable. NOTE: it could be argued that this is a vulnerability in the applications that do...

6.9CVSS6.1AI score0.01093EPSS
Exploits1References4
OpenVAS
OpenVASadded 2009/10/11 12:0 a.m.26 views

SLES11: Security update for glib2

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: glib2 glib2-doc glib2-lang libgio-20-0 libglib-20-0 libgmodule-20-0 libgobject-20-0 libgthread-20-0 More details may also be found by searching for the SuSE...

4.6CVSS0.2AI score0.00494EPSS
Exploits1References1
Rows per page
Query Builder