PT-2018-14910 · Sylabs+2 · Sylabs Singularity+2

Publicado

2018-12-17

·

Atualizado

2024-06-15

·

CVE-2018-19295

CVSS v3.1

7.8

Alta

VetorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Sylabs Singularity versions 2.4 through 2.6
Description The issue allows local users to conduct Improper Input Validation attacks.
Recommendations For versions 2.4 through 2.6, update to a version that includes a fix for this issue.

Correção

RCE

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-20

Identificadores relacionados

CVE-2018-19295
GHSA-P83V-8VMR-QFV9
OPENSUSE-SU-2019:0009-1
OPENSUSE-SU-2019:0095-1
OPENSUSE-SU-2019_0009-1
OPENSUSE-SU-2024:11384-1
USN-4840-1

Produtos afetados

Suse
Sylabs Singularity
Ubuntu