CVE-2014-1845

An unspecified setuid root helper in Enlightenment before 0.17.6 allows local users to gain privileges by leveraging failure to properly sanitize the environment.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.8 HIGH
LOCAL
LOW
LOW
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 19%
VendorProductVersion
enlightenmentenlightenment
𝑥
< 0.17.6
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
e17
bullseye
0.24.2-8+deb11u1
fixed
bullseye (security)
0.24.2-8+deb11u1
fixed
bookworm
0.25.4-2
fixed
sid
0.26.0-4
fixed
trixie
0.26.0-4
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
e17
zesty
not-affected
yakkety
not-affected
xenial
not-affected
wily
not-affected
vivid
not-affected
utopic
not-affected
trusty
dne
saucy
ignored
quantal
ignored
precise
ignored
lucid
dne
Common Weakness Enumeration
References
http://www.openwall.com/lists/oss-security/2014/02/03/19
https://bugzilla.redhat.com/show_bug.cgi?id=1059410
https://exchange.xforce.ibmcloud.com/vulnerabilities/91216
https://git.enlightenment.org/core/enlightenment.git/commit/?id=666df815cd86a50343859bce36c5cf968c5f38b0
https://git.enlightenment.org/core/enlightenment.git/commit/?id=bb4a21e98656fe2c7d98ba2163e6defe9a630e2b
http://www.openwall.com/lists/oss-security/2014/02/03/19
https://bugzilla.redhat.com/show_bug.cgi?id=1059410
https://exchange.xforce.ibmcloud.com/vulnerabilities/91216
https://git.enlightenment.org/core/enlightenment.git/commit/?id=666df815cd86a50343859bce36c5cf968c5f38b0
https://git.enlightenment.org/core/enlightenment.git/commit/?id=bb4a21e98656fe2c7d98ba2163e6defe9a630e2b