CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedhatCVE•added 2025/05/23 3:6 a.m.•3 views

CVE-2023-2091

A vulnerability classified as critical was found in KylinSoft youker-assistant on KylinOS. Affected by this vulnerability is the function adjustcpufreqscalinggoverner. The manipulation leads to os command injection. It is possible to launch the attack on the local host. The exploit has been...

7.8CVSS7AI score0.00926EPSS

Exploits1References1

OSV•added 2024/05/17 11:8 a.m.•0 views

OESA-2024-1601 youker-assistant security update

Integrated tool to aid in routine system maintenance tasks Kylin Assistant is a tool designed to help Ubuntu and Ubuntu Kylin desktop users manage and maintain many aspects of their working environment conveniently in a single application, providing a consistent user experience. Security Fixes: A...

7.8CVSS7AI score0.00926EPSS

Exploits1References2

NVD•added 2023/06/05 7:15 a.m.•16 views

CVE-2023-3098

A vulnerability classified as critical has been found in KylinSoft youker-assistant on KylinOS. Affected is the function restoreallsoundfile. The manipulation leads to path traversal: '../filedir'. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used...

7.8CVSS5.7AI score0.00046EPSS

OSV•added 2023/06/05 7:15 a.m.•1 views

CVE-2023-3098

7.8CVSS5.5AI score0.00046EPSS

Prion•added 2023/06/05 7:15 a.m.•12 views

Improper access control

A vulnerability classified as critical was found in KylinSoft youker-assistant on KylinOS. Affected by this vulnerability is the function deletefile in the library dbus.SystemBus of the component Arbitrary File Handler. The manipulation leads to improper access controls. It is possible to launch...

3.2CVSS6.9AI score0.00055EPSS

Prion•added 2023/06/05 7:15 a.m.•16 views

Path traversal

3.2CVSS7.6AI score0.00046EPSS

CVE•added 2023/06/05 7:0 a.m.•39 views

CVE-2023-3099

CVE-2023-3099 affects KylinSoft youker-assistant on KylinOS. The vulnerability is in the delete_file function of the dbus.SystemBus component within Arbitrary File Handler, causing improper access controls and enabling a local attack. Exploitation is local, with a high impact on integrity/availab...

7.1CVSS5.8AI score0.00055EPSS

Cvelist•added 2023/06/05 6:31 a.m.•21 views

CVE-2023-3098 KylinSoft youker-assistant restore_all_sound_file path traversal

4.4CVSS7.9AI score0.00046EPSS

CVE•added 2023/06/05 6:31 a.m.•42 views

CVE-2023-3098

CVE-2023-3098 affects KylinSoft youker-assistant on KylinOS. The vulnerable component is the restore_all_sound_file function, which allows path traversal (e.g., ../filedir) with local access. The issue has been publicly disclosed; upgrading to 3.0.2-0kylin6k70-23 addresses the vulnerability.

7.8CVSS6.1AI score0.00046EPSS

CNNVD•added 2023/06/05 12:0 a.m.•1 views

KylinSoft youker-assistant 安全漏洞

KylinSoft youker-assistant is a system management and configuration tool from China's Kylin Software KylinSoft. A security vulnerability exists in KylinSoft youker-assistant versions prior to 3.0.2-0kylin6k70-23, which stems from incorrect access control...

7.1CVSS5.5AI score0.00055EPSS

Positive Technologies•added 2023/06/05 12:0 a.m.•1 views

PT-2023-23100 · Kylinsoft · Youker-Assistant

Name of the Vulnerable Software and Affected Versions: KylinSoft youker-assistant versions prior to 3.0.2-0kylin6k70-23 Description: A critical issue was found in the delete file function of the dbus.SystemBus library in the Arbitrary File Handler component, leading to improper access controls...

7.1CVSS7.1AI score0.00055EPSS

CNNVD•added 2023/06/05 12:0 a.m.•2 views

KylinSoft youker-assistant 路径遍历漏洞

KylinSoft youker-assistant is a system management and configuration tool from KylinSoft China. A security vulnerability exists in KylinSoft youker-assistant versions prior to 3.0.2-0kylin6k70-23. An attacker could exploit the vulnerability to access files and directories stored outside of the web...

7.8CVSS5.7AI score0.00046EPSS

NVD•added 2023/04/15 9:15 a.m.•8 views

CVE-2023-2091

7.8CVSS8.1AI score0.00926EPSS

Prion•added 2023/04/15 9:15 a.m.•15 views

Command injection

6.8CVSS8AI score0.00926EPSS

Exploits1References4Affected Software1

CVE•added 2023/04/15 8:40 a.m.•41 views

CVE-2023-2091

CVE-2023-2091 affects KylinSoft youker-assistant on KylinOS. The issue resides in the function adjust_cpufreq_scaling_governer , whose manipulation enables OS command injection on the local host. The vulnerability has been publicly disclosed and an exploit exists, with the recommended fix being t...

7.8CVSS8.1AI score0.00926EPSS

Exploits1References4Affected Software1

Vulnrichment•added 2023/04/15 8:40 a.m.•7 views

CVE-2023-2091 KylinSoft youker-assistant adjust_cpufreq_scaling_governer os command injection

7.8CVSS7.4AI score0.00926EPSS

Cvelist•added 2023/04/15 8:40 a.m.•11 views

CVE-2023-2091 KylinSoft youker-assistant adjust_cpufreq_scaling_governer os command injection

7.8CVSS8.3AI score0.00926EPSS