CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2010-3364

The vips-7.22 script in VIPS 7.22.2 places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 35.3%

CVSS Severity

CVSS v2 Score 6.9

References

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=598296
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=598296

Products affected by CVE-2010-3364

Vips » Vips » Version: 7.22.2

cpe:2.3:a:vips:vips:7.22.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2010-3364

Products

Pricing

Contact Us