CVE-2024-48990

CVSS v3.1

7.8

High

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions needrestart versions prior to 3.8 Module::ScanDeps versions prior to 3.8

Description The needrestart utility, versions prior to 3.8, contains a flaw due to improper handling of the PYTHONPATH environment variable. This allows local attackers to execute arbitrary code with root privileges by manipulating the PYTHONPATH during Python interpreter initialization. The vulnerability stems from an uncontrolled search path element. A publicly available exploit exists for this issue. The vulnerability affects systems running Ubuntu and Debian.

Recommendations Upgrade needrestart to version 3.8 or later. Upgrade Module::ScanDeps to version 3.8 or later.

Exploit

Fix

LPE

Uncontrolled Search Path Element

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-427

Related Identifiers

ALSA-2025_7350

BDU:2024-10112

CVE-2024-48990

DLA-3957-1

DLA-3957-2

DSA-5815-1

DSA-5815-2

USN-7117-1

USN-7117-2

USN-7117-3

Affected Products

Astra Linux

Linuxmint

Ubuntu

Needrestart

CVE-2024-48990

Weakness Enumeration

Related Identifiers

Affected Products

References · 69