CVE-2001-1203Use of Externally-Controlled Format String in Rubini GPM

3 documents3 sources
Severity
7.2HIGHNVD
EPSS
0.1%
top 84.67%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Alessandro Rubini GPM
Timeline
PublishedDec 27
Latest updateApr 30

Description

Format string vulnerability in gpm-root in gpm 1.17.8 through 1.17.18 allows local users to gain root privileges.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages1 packages

NVDalessandro_rubini/gpm1.17.18, 1.17.8+1

Patches

Patch: www.debian.orgPatch: www.debian.org

🔴Vulnerability Details

2
GHSA
GHSA-q9m9-mp3j-xcvf: Format string vulnerability in gpm-root in gpm 12022-04-30
CVEList
CVE-2001-1203: Format string vulnerability in gpm-root in gpm 12002-06-25
CVE-2001-1203 — Alessandro Rubini GPM vulnerability | cvebase