CVE-2017-7622 in DDE
Resumen (Inglés)
dde-daemon, the daemon process of DDE (Deepin Desktop Environment) 15.0 through 15.3, runs with root privileges and hardly does anything to identify the user who calls the function through D-Bus. Anybody can change the grub config, even to append some arguments to make a backdoor or privilege escalation, by calling DoWriteGrubSettings() provided by dde-daemon.
If you want to get best quality of vulnerability data, you may have to visit VulDB.
Reservar
2017-04-10
Divulgación
2017-04-10
Voces
VulDB provides additional information and datapoints for this CVE:
| ID | Vulnerabilidad | CWE | Exp | Con | CVE |
|---|---|---|---|---|---|
| 99561 | DDE dde-daemon DoWriteGrubSettings escalada de privilegios | 264 | No está definido | No está definido | CVE-2017-7622 |
Descripción
CPE
CWE
CVSS
Hazañas
Historia
Diferencia
Relacionar
Inteligencia de amenazas
API JSON
API XML
API CSV