Lucene search
Fluid AttacksVULNRICHMENT:CVE-2023-3891HistorySep 15, 2023 - 2:07 a.m.
CVE-2023-3891 Lapce v0.2.8 - Privilege escalation via Race Condition
2023-09-1502:07:22
CWE-367
Fluid Attacks
github.com
cve-2023-3891
lapce v0.2.8
race condition
privilege escalation
CVSS3
7.3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
AI Score
6.8
Confidence
Low
SSVC
Exploitation
poc
Automatable
no
Technical Impact
total
Race condition in Lapce v0.2.8 allows an attacker to elevate privileges on the system
ADP Affected
[
{
"cpes": [
"cpe:2.3:a:lapce:lapce:0.2.8:*:*:*:*:*:*:*"
],
"vendor": "lapce",
"product": "lapce",
"versions": [
{
"status": "affected",
"version": "0.2.8"
}
],
"defaultStatus": "unknown"
}
]Related
cve
cve
CVE-2023-3891
2023-09-15 03:15:08
osv
osv
CVE-2023-3891
2023-09-15 03:15:08
prion
prion
Race condition
2023-09-15 03:15:00
nvd
nvd
CVE-2023-3891
2023-09-15 03:15:08
cvelist
cvelist
CVE-2023-3891 Lapce v0.2.8 - Privilege escalation via Race Condition
2023-09-15 02:07:22
CVSS3
7.3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
AI Score
6.8
Confidence
Low
SSVC
Exploitation
poc
Automatable
no
Technical Impact
total
Related for VULNRICHMENT:CVE-2023-3891