CVE-2019-11773Uncontrolled Search Path Element in Eclipse Foundation Eclipse OMR

CWE-264CWE-427Uncontrolled Search Path Element3 documents3 sources
Severity
7.8HIGHNVD
EPSS
0.1%
top 83.16%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
THE Eclipse Foundation Eclipse OMREclipse OMR
Timeline
PublishedSep 12
Latest updateMay 24

Description

Prior to 0.1, AIX builds of Eclipse OMR contain unused RPATHs which may facilitate code injection and privilege elevation by local users.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages2 packages

NVDeclipse/omr< 0.1
CVEListV5the_eclipse_foundation/eclipse_omrunspecified0.1

🔴Vulnerability Details

2
GHSA
GHSA-hff7-qmcr-8mx9: Prior to 02022-05-24
CVEList
CVE-2019-11773: Prior to 02019-09-12
CVE-2019-11773 — Uncontrolled Search Path Element | cvebase