admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-31 02:31:22 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2023/CVE-2023-403xx/CVE-2023-40303.json

28 lines
1.0 KiB
JSON
Raw Normal View History

Auto-Update: 2023-08-14T06:00:28.462663+00:00
2023-08-14 06:00:31 +00:00
{
"id": "CVE-2023-40303",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-08-14T05:15:10.233",
Auto-Update: 2023-08-14T14:00:31.955652+00:00
2023-08-14 14:00:35 +00:00
"lastModified": "2023-08-14T13:06:15.630",
"vulnStatus": "Awaiting Analysis",
Auto-Update: 2023-08-14T06:00:28.462663+00:00
2023-08-14 06:00:31 +00:00
"descriptions": [
{
"lang": "en",
"value": "GNU inetutils through 2.4 may allow privilege escalation because of unchecked return values of set*id() family functions in ftpd, rcp, rlogin, rsh, rshd, and uucpd. This is, for example, relevant if the setuid system call fails when a process is trying to drop privileges before letting an ordinary user control the activities of the process."
}
],
"metrics": {},
"references": [
{
"url": "https://ftp.gnu.org/gnu/inetutils/",
"source": "cve@mitre.org"
},
{
"url": "https://git.savannah.gnu.org/cgit/inetutils.git/commit/?id=e4e65c03f4c11292a3e40ef72ca3f194c8bffdd6",
"source": "cve@mitre.org"
},
{
"url": "https://lists.gnu.org/archive/html/bug-inetutils/2023-07/msg00000.html",
"source": "cve@mitre.org"
}
]
}
Reference in New Issue Copy Permalink