Total
2 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2021-41387 | 1 Seatd Project | 1 Seatd | 2022-07-12 | 8.5 HIGH | 8.8 HIGH |
seatd-launch in seatd 0.6.x before 0.6.2 allows privilege escalation because it uses execlp and may be installed setuid root. | |||||
CVE-2022-25643 | 1 Seatd Project | 1 Seatd | 2022-03-04 | 9.3 HIGH | 9.8 CRITICAL |
seatd-launch in seatd 0.6.x before 0.6.4 allows removing files with escalated privileges when installed setuid root. The attack vector is a user-supplied socket pathname. |