admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-28 17:21:36 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2024/CVE-2024-385xx/CVE-2024-38508.json
cad-safe-bot e6cbafdc40 Auto-Update: 2024-12-08T03:00:18.988682+00:00
2024-12-08 03:06:42 +00:00

64 lines
2.0 KiB
JSON
Raw Blame History

{
"id": "CVE-2024-38508",
"sourceIdentifier": "psirt@lenovo.com",
"published": "2024-07-26T20:15:03.597",
"lastModified": "2024-11-21T09:26:07.147",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "A privilege escalation vulnerability was discovered in the web interface or SSH captive command shell interface of XCC that could allow an authenticated XCC user with elevated privileges to perform command injection via a specially crafted request."
},
{
"lang": "es",
"value": " Se descubri\u00f3 una vulnerabilidad de escalada de privilegios en la interfaz web o en la interfaz de shell de comandos cautivos SSH de XCC que podr\u00eda permitir a un usuario de XCC autenticado con privilegios elevados realizar la inyecci\u00f3n de comandos a trav\u00e9s de una solicitud especialmente manipulada."
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "psirt@lenovo.com",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"baseScore": 7.2,
"baseSeverity": "HIGH",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "HIGH",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH"
},
"exploitabilityScore": 1.2,
"impactScore": 5.9
}
]
},
"weaknesses": [
{
"source": "psirt@lenovo.com",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-78"
}
]
}
],
"references": [
{
"url": "https://support.lenovo.com/us/en/product_security/LEN-156781",
"source": "psirt@lenovo.com"
},
{
"url": "https://support.lenovo.com/us/en/product_security/LEN-156781",
"source": "af854a3a-2127-422b-91ae-364da2661108"
}
]
}
Reference in New Issue View Git Blame Copy Permalink