← Back

Seatd

seatd

Vendor: Seatd Project • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2022-25643
1Seatd Project
1Seatd
Nov 21, 2024
Feb 24, 2022
N/A· v4
9.8 CRITICAL· v3
9.3 HIGH· v2
seatd-launch in seatd 0.6.x before 0.6.4 allows removing files with escalated privileges when installed setuid root. The attack vector is a user-supplied socket pathname.
CVE-2021-41387
1Seatd Project
1Seatd
Nov 21, 2024
Sep 17, 2021
N/A· v4
8.8 HIGH· v3
8.5 HIGH· v2
seatd-launch in seatd 0.6.x before 0.6.2 allows privilege escalation because it uses execlp and may be installed setuid root.