Skip to main content

Needrestart

5 CVEs product

Monthly

CVE-2024-48992 HIGH PATCH This Week

Qualys discovered that needrestart, before version 3.8, allows local attackers to execute arbitrary code as root by tricking needrestart into running the Ruby interpreter with an attacker-controlled. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

RCE Needrestart
NVD GitHub
CVSS 3.1
7.8
EPSS
6.6%
CVE-2024-48991 HIGH PATCH This Week

Qualys discovered that needrestart, before version 3.8, allows local attackers to execute arbitrary code as root by winning a race condition and tricking needrestart into running their own, fake. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

RCE Race Condition Python Needrestart
NVD GitHub
CVSS 3.1
7.8
EPSS
5.3%
CVE-2024-48990 HIGH POC PATCH THREAT Act Now

Qualys discovered that needrestart, before version 3.8, allows local attackers to execute arbitrary code as root by tricking needrestart into running the Python interpreter with an. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

RCE Python Needrestart
NVD GitHub
CVSS 3.1
7.8
EPSS
19.9%
CVE-2024-11003 HIGH PATCH This Week

Qualys discovered that needrestart, before version 3.8, passes unsanitized data to a library (Modules::ScanDeps) which expects safe input. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. This OS Command Injection vulnerability could allow attackers to execute arbitrary operating system commands on the host.

Command Injection Needrestart
NVD GitHub
CVSS 3.1
7.8
EPSS
11.5%
CVE-2022-30688 HIGH PATCH This Week

needrestart 0.8 through 3.5 before 3.6 is prone to local privilege escalation. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Privilege Escalation Python Needrestart Debian Linux
NVD GitHub
CVSS 3.1
7.8
EPSS
0.4%
EPSS 7% CVSS 7.8
HIGH PATCH This Week

Qualys discovered that needrestart, before version 3.8, allows local attackers to execute arbitrary code as root by tricking needrestart into running the Ruby interpreter with an attacker-controlled. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

RCE Needrestart
NVD GitHub
EPSS 5% CVSS 7.8
HIGH PATCH This Week

Qualys discovered that needrestart, before version 3.8, allows local attackers to execute arbitrary code as root by winning a race condition and tricking needrestart into running their own, fake. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

RCE Race Condition Python +1
NVD GitHub
EPSS 20% CVSS 7.8
HIGH POC PATCH THREAT Act Now

Qualys discovered that needrestart, before version 3.8, allows local attackers to execute arbitrary code as root by tricking needrestart into running the Python interpreter with an. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

RCE Python Needrestart
NVD GitHub
EPSS 12% CVSS 7.8
HIGH PATCH This Week

Qualys discovered that needrestart, before version 3.8, passes unsanitized data to a library (Modules::ScanDeps) which expects safe input. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. This OS Command Injection vulnerability could allow attackers to execute arbitrary operating system commands on the host.

Command Injection Needrestart
NVD GitHub
EPSS 0% CVSS 7.8
HIGH PATCH This Week

needrestart 0.8 through 3.5 before 3.6 is prone to local privilege escalation. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Privilege Escalation Python Needrestart +1
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy