CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-36250

CSV Injection vulnerability in GNOME time tracker version 3.0.2, allows local attackers to execute arbitrary code via crafted .tsv file when creating a new record.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.028

EPSS Ranking 85.6%

CVSS Severity

CVSS v3 Score 7.8

References

https://github.com/BrunoTeixeira1996/CVE-2023-36250/blob/main/README.md
https://github.com/BrunoTeixeira1996/CVE-2023-36250/blob/main/README.md

Products affected by CVE-2023-36250

Gnome » Gnome-Time Tracker » Version: 3.0.2

cpe:2.3:a:gnome:gnome-time_tracker:3.0.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-36250

Products

Pricing

Contact Us