CVE-2019-17080
23Vexday Risk Score
No sign of exploitation. It has a public proof of concept.
ssvc Attendepss 8.2%
from disclosure to weapon0 days
Published on NVDOct 2
1st PoCOct 2
exploitation probability
8.2%top 6% of all CVEs
observed exploitation
nono source reports it
4 public exploit(s)
mintinstall (aka Software Manager) 7.9.9 for Linux Mint allows code execution if a REVIEWS_CACHE file is controlled by an attacker, because an unpickle occurs. This is resolved in 8.0.0 and backports.
Affected products
n/a · n/apublic PoCs found — 4
githubgithub.com/Andhrimnirr/Mintinstall-object-injection★ 1githubgithub.com/materaj2/Mintinstall-object-injection★ 0cve_referencepacketstormsecurity.com/files/154722/mintinstall-7.9.9-Code-Execution.htmlunverifiedexploitdbwww.exploit-db.com/exploits/47457unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.