← back
CVE-2023-24626

CVE-2023-24626

CVSS 6.5 MEDIUMEPSS 0.5%CWE-732
Vexday Risk Score
13Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 6.5EPSS 0.5%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
08 Apr 2023Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
socket.c in GNU Screen through 4.9.0, when installed setuid or setgid (the default on platforms such as Arch Linux and FreeBSD), allows local users to send a privileged SIGHUP signal to any PID, causing a denial of service or disruption of the target process.
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://git.savannah.gnu.org/cgit/screen.git/patch/?id=e9ad41bfedb4537a6f0de20f00b27c7739f168f7https://savannah.gnu.org/bugs/?63195https://security.netapp.com/advisory/ntap-20250509-0003/https://www.exploit-db.com/exploits/51252