Skip to main content

Common Desktop Environment

3 CVEs product

Monthly

CVE-2023-24040 HIGH POC This Week

dtprintinfo in Common Desktop Environment 1.6 has a bug in the parser of lpstat (an invoked external command) during listing of the names of available printers. Rated high severity (CVSS 7.1), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Common Desktop Environment
NVD GitHub
CVSS 3.1
7.1
EPSS
0.5%
CVE-2023-24039 HIGH POC This Week

A stack-based buffer overflow in ParseColors in libXm in Common Desktop Environment 1.6 can be exploited by local low-privileged users via the dtprintinfo setuid binary to escalate their privileges. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Buffer Overflow Common Desktop Environment
NVD GitHub
CVSS 3.1
7.8
EPSS
0.5%
CVE-2022-43752 HIGH POC This Week

Oracle Solaris version 10 1/13, when using the Common Desktop Environment (CDE), is vulnerable to a privilege escalation vulnerability. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Oracle Privilege Escalation Buffer Overflow Common Desktop Environment
NVD GitHub
CVSS 3.1
7.8
EPSS
0.3%
EPSS 0% CVSS 7.1
HIGH POC This Week

dtprintinfo in Common Desktop Environment 1.6 has a bug in the parser of lpstat (an invoked external command) during listing of the names of available printers. Rated high severity (CVSS 7.1), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Common Desktop Environment
NVD GitHub
EPSS 0% CVSS 7.8
HIGH POC This Week

A stack-based buffer overflow in ParseColors in libXm in Common Desktop Environment 1.6 can be exploited by local low-privileged users via the dtprintinfo setuid binary to escalate their privileges. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Buffer Overflow Common Desktop Environment
NVD GitHub
EPSS 0% CVSS 7.8
HIGH POC This Week

Oracle Solaris version 10 1/13, when using the Common Desktop Environment (CDE), is vulnerable to a privilege escalation vulnerability. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Oracle Privilege Escalation Buffer Overflow +1
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy