CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

28 matches found

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2022-30303

Malicious code in bioql PyPI...

9.8CVSS8.6AI score0.01674EPSS

Exploits0References7

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2021-28415

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.00521EPSS

Exploits0References2

Tenable Nessus•added 2025/08/30 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2022-25643

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - seatd-launch in seatd 0.6.x before 0.6.4 allows removing files with escalated privileges when installed setuid root. The attack vector is a user-supplied socket...

9.8CVSS7.9AI score0.01674EPSS

Exploits0References2

SUSE CVE•added 2023/02/15 3:27 a.m.•1 views

SUSE CVE-2022-25643

seatd-launch in seatd 0.6.x before 0.6.4 allows removing files with escalated privileges when installed setuid root. The attack vector is a user-supplied socket pathname...

9.8CVSS8.6AI score0.01674EPSS

Exploits0References4

Veracode•added 2022/02/25 12:5 a.m.•25 views

Privilege Escalation

seatd is vulnerable to privilege escalation. seatd-launch allows removing files via a user-supplied socket pathname when setuid root is installed allowing attackers to elevate privileges...

9.8CVSS6.2AI score0.01674EPSS

Exploits0References7Affected Software1

ATTACKERKB•added 2022/02/24 3:15 p.m.•2 views

CVE-2022-25643

seatd-launch in seatd 0.6.x before 0.6.4 allows removing files with escalated privileges when installed setuid root. The attack vector is a user-supplied socket pathname...

9.8CVSS5.3AI score0.01674EPSS

Exploits0References7

OSV•added 2022/02/24 3:15 p.m.•1 views

DEBIAN-CVE-2022-25643

seatd-launch in seatd 0.6.x before 0.6.4 allows removing files with escalated privileges when installed setuid root. The attack vector is a user-supplied socket pathname...

9.8CVSS8.2AI score0.01674EPSS

Exploits0References1

OSV•added 2022/02/24 3:15 p.m.•19 views

CVE-2022-25643

seatd-launch in seatd 0.6.x before 0.6.4 allows removing files with escalated privileges when installed setuid root. The attack vector is a user-supplied socket pathname...

9.8CVSS6.7AI score0.01674EPSS

Exploits0References6

NVD•added 2022/02/24 3:15 p.m.•16 views

CVE-2022-25643

seatd-launch in seatd 0.6.x before 0.6.4 allows removing files with escalated privileges when installed setuid root. The attack vector is a user-supplied socket pathname...

9.8CVSS0.01674EPSS

Exploits0References6

UbuntuCve•added 2022/02/24 3:15 p.m.•24 views

CVE-2022-25643

seatd-launch in seatd 0.6.x before 0.6.4 allows removing files with escalated privileges when installed setuid root. The attack vector is a user-supplied socket pathname...

9.8CVSS7.1AI score0.01674EPSS

Exploits0References4

Prion•added 2022/02/24 3:15 p.m.•17 views

Design/Logic Flaw

seatd-launch in seatd 0.6.x before 0.6.4 allows removing files with escalated privileges when installed setuid root. The attack vector is a user-supplied socket pathname...

9.3CVSS9.3AI score0.01674EPSS

Exploits0References6Affected Software1

OSV•added 2022/02/24 3:15 p.m.•0 views

UBUNTU-CVE-2022-25643

seatd-launch in seatd 0.6.x before 0.6.4 allows removing files with escalated privileges when installed setuid root. The attack vector is a user-supplied socket pathname...

9.8CVSS7.2AI score0.01674EPSS

Exploits0References5

CNNVD•added 2022/02/24 12:0 a.m.•3 views

seatd-launch 权限许可和访问控制问题漏洞

Seatd is an administrative daemon. It is used to mediate access to shared devices graphics, input. seatd-launch A security vulnerability exists in seatd versions 0.6.x through 0.6.4, which stems from a lack of privilege restrictions in the software that allow files with escalated privileges to be...

9.8CVSS7.9AI score0.01674EPSS

Exploits0References6

Debian CVE•added 2022/02/22 12:0 a.m.•61 views

CVE-2022-25643

seatd-launch in seatd 0.6.x before 0.6.4 allows removing files with escalated privileges when installed setuid root. The attack vector is a user-supplied socket pathname...

9.8CVSS9.5AI score0.01674EPSS

Exploits0

CVE•added 2022/02/22 12:0 a.m.•88 views

CVE-2022-25643

CVE-2022-25643 affects seatd-launch in seatd 0.6.x prior to 0.6.4. It allows removing files with escalated privileges when the binary is installed setuid root, with the attack vector being a user-supplied socket pathname. Public details in the provided document indicate the vulnerable condition a...

9.8CVSS9.3AI score0.01674EPSS

Exploits0References6Affected Software1

Tenable Nessus•added 2022/02/22 12:0 a.m.•30 views

FreeBSD : seatd-launch -- remove files with escalated privileges with SUID (1cd565da-455e-41b7-a5b9-86ad8e81e33e)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 1cd565da-455e-41b7-a5b9-86ad8e81e33e advisory. - Kenny Levinsen reports: seatd-launch could use a user-specified socket path instead of the internally...

9.8CVSS8.1AI score0.01674EPSS

Exploits0References3

FreeBSD•added 2022/02/21 12:0 a.m.•76 views

seatd-launch -- remove files with escalated privileges with SUID

Kenny Levinsen reports: seatd-launch could use a user-specified socket path instead of the internally generated socket path, and would unlink the socket path before use to guard against collision with leftover sockets. This meant that a caller could freely control what file path would be unlinked...

9.8CVSS2.8AI score0.01674EPSS

Exploits0References1

Veracode•added 2021/09/19 5:45 a.m.•11 views

Privilege Escalation

seatd is vulnerable to privilege escalation. The vulnerability exists due to the system using execlp whichallows setuid root to be installed...

8.8CVSS3.8AI score0.00521EPSS

Exploits0References2Affected Software1

NVD•added 2021/09/17 9:15 p.m.•6 views

CVE-2021-41387

seatd-launch in seatd 0.6.x before 0.6.2 allows privilege escalation because it uses execlp and may be installed setuid root...

8.8CVSS0.00521EPSS

Exploits0References1