← back
CVE-2011-4124

CVE-2011-4124

EPSS 2.2%CWE-20
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS EPSS 2.2%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
27 Oct 2021Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Input validation issues were found in Calibre at devices/linux_mount_helper.c which can lead to argument injection and elevation of privileges.
Affected products
n/a · Calibre

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://bugs.launchpad.net/calibre/+bug/885027https://git.zx2c4.com/calibre-mount-helper-exploit/about/https://lwn.net/Articles/464824/https://www.openwall.com/lists/oss-security/2011/11/02/2