← Back

Kylin System Updater

kylin-system-updater

Vendor: Ubuntukylin • 1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2023-1277
1Ubuntukylin
1Kylin System Updater
Nov 21, 2024
Mar 8, 2023
N/A· v4
7.8 HIGH· v3
6.8 MEDIUM· v2
A vulnerability, which was classified as critical, was found in kylin-system-updater up to 1.4.20kord on Ubuntu Kylin. Affected is the function InstallSnap of the component Update Handler. The manipulation leads to comma...Show more
A vulnerability, which was classified as critical, was found in kylin-system-updater up to 1.4.20kord on Ubuntu Kylin. Affected is the function InstallSnap of the component Update Handler. The manipulation leads to command injection. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-222600.Show less