1 results (0.003 seconds)
CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 1
CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 1CVE-2023-30630 – dmidecode: dump-bin to overwrite a local file
https://notcve.org/view.php?id=CVE-2023-30630
13 Apr 2023 — Dmidecode before 3.5 allows -dump-bin to overwrite a local file. This has security relevance because, for example, execution of Dmidecode via Sudo is plausible. Dmidecode before 3.5 allows -dump-bin to overwrite a local file. This has security relevance because, for example, execution of Dmidecode via Sudo is plausible. NOTE: Some third parties have indicated the fix in 3.5 does not adequately address the vulnerability. • https://git.savannah.nongnu.org/cgit/dmidecode.git/commit/?id=6ca381c1247c81f74e1ca4e7706f70bdda72e6f2 • CWE-23: Relative Path Traversal CWE-269: Improper Privilege Management •