CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2019-17080

mintinstall (aka Software Manager) 7.9.9 for Linux Mint allows code execution if a REVIEWS_CACHE file is controlled by an attacker, because an unpickle occurs. This is resolved in 8.0.0 and backports.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.105

EPSS Ranking 92.9%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 6.8

References

http://packetstormsecurity.com/files/154722/mintinstall-7.9.9-Code-Execution.html
https://forums.linuxmint.com/viewtopic.php?f=143&t=302960
https://github.com/Andhrimnirr/Mintinstall-object-injection
https://github.com/linuxmint/mintinstall/blob/master/debian/changelog
http://packetstormsecurity.com/files/154722/mintinstall-7.9.9-Code-Execution.html
https://forums.linuxmint.com/viewtopic.php?f=143&t=302960
https://github.com/Andhrimnirr/Mintinstall-object-injection
https://github.com/linuxmint/mintinstall/blob/master/debian/changelog

Products affected by CVE-2019-17080

Linuxmint » Mintinstall » Version: 7.9.9

cpe:2.3:a:linuxmint:mintinstall:7.9.9

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-17080

Products

Pricing

Contact Us