PT-2023-14621 · Suse · Obs-Service-Go Modules

Thomas Leroy

Publicado

2023-03-15

Atualizado

2024-06-15

CVE-2022-45155

CVSS v3.1

5.5

Média

Vetor

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Name of the Vulnerable Software and Affected Versions SUSE openSUSE Factory obs-service-go modules versions prior to 0.6.1

Description An Improper Handling of Exceptional Conditions issue in obs-service-go modules of openSUSE Factory allows attackers that can influence the call to the service to delete files and directories on the system of the victim.

Recommendations For SUSE openSUSE Factory obs-service-go modules versions prior to 0.6.1, update to version 0.6.1 or later to resolve the issue. As a temporary workaround, consider restricting access to the service to minimize the risk of exploitation.

Exploit

Correção

Improper Handling of Exceptional Conditions

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-755

Identificadores relacionados

CVE-2022-45155

OPENSUSE-SU-2024:12740-1

Produtos afetados

Obs-Service-Go Modules

PT-2023-14621 · Suse · Obs-Service-Go Modules

CVE-2022-45155

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 9