CVE-2024-28085

CWE-150 CWE-2689 documents8 sources

Severity

3.3LOW

EPSS

11.2%

top 6.51%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Kernel Util-linux Debian Debian Linux

Timeline

PublishedMar 27

Latest updateApr 10

Description

wall in util-linux through 2.40, often installed with setgid tty permissions, allows escape sequences to be sent to other users' terminals through argv. (Specifically, escape sequences received from stdin are blocked, but escape sequences received from argv are not blocked.) There may be plausible scenarios where this leads to account takeover.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:NExploitability: 1.8 | Impact: 1.4

Affected Packages2 packages

▶NVDkernel/util-linux2.24 — 2.39.4

▶Debianutil-linux< 2.36.1-8+deb11u2+3

Also affects: Debian Linux 10.0

Patches

Patch: www.openwall.com ↗Patch: www.openwall.com ↗Patch: www.openwall.com ↗

🔴Vulnerability Details

GHSA

GHSA-px7f-qj7m-m4v6: wall in util-linux through 2↗2024-03-27

▶

OSV

CVE-2024-28085: wall in util-linux through 2↗2024-03-27

▶

CVEList

CVE-2024-28085: wall in util-linux through 2↗2024-03-27

▶

📋Vendor Advisories

Ubuntu

util-linux vulnerability↗2024-04-10

▶

Ubuntu

util-linux vulnerability↗2024-03-27

▶

Red Hat

util-linux: CVE-2024-28085: wall: escape sequence injection↗2024-03-27

▶

Microsoft

wall in util-linux through 2.40 often installed with setgid tty permissions allows escape sequences to be sent to other users' terminals through argv. (Specifically escape sequences received from stdi↗2024-03-12

▶

Debian

CVE-2024-28085: util-linux - wall in util-linux through 2.40, often installed with setgid tty permissions, al...↗2024

▶