CVE-2021-3800
CVE-2021-3800
Vexday Risk Score
3Baixo
Decisão SSVC (CISA)
Track
Sem sinal de exploração → monitorar
CVSS —EPSS 0.5%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
23 ago 2022Publicada no NVD
Recomendação: Monitorar — sem sinal de exploração no momento.
A flaw was found in glib before version 2.63.6. Due to random charset alias, pkexec can leak content from files owned by privileged users to unprivileged ones under the right condition.
Produtos afetados
n/a · GlibReferências
https://access.redhat.com/security/cve/CVE-2021-3800https://bugzilla.redhat.com/show_bug.cgi?id=1938284https://gitlab.gnome.org/GNOME/glib/-/commit/3529bb4450a51995https://lists.debian.org/debian-lts-announce/2022/09/msg00020.htmlhttps://security.netapp.com/advisory/ntap-20221028-0004/https://www.openwall.com/lists/oss-security/2017/06/23/8