← back
CVE-2022-24951

CVE-2022-24951

EPSS 0.3%CWE-362
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS EPSS 0.3%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
16 Aug 2022Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
A race condition exists in Eternal Terminal prior to version 6.2.0 which allows a local attacker to hijack Eternal Terminal's IPC socket, enabling access to Eternal Terminal clients which attempt to connect in the future.
Affected products
Jason Gauci · Eternal Terminal

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/metaredteam/external-disclosures/security/advisories/GHSA-546v-59j5-g95qhttps://github.com/MisterTea/EternalTerminal/releases/tag/et-v6.2.0http://www.openwall.com/lists/oss-security/2023/02/16/1