Vulnerabilities > CVE-2022-30688

CVSS 7.8 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

needrestart-project

debian

NVD

Published: 2022-05-17

Updated: 2023-08-08

Summary

needrestart 0.8 through 3.5 before 3.6 is prone to local privilege escalation. Regexes to detect the Perl, Python, and Ruby interpreters are not anchored, allowing a local user to escalate privileges when needrestart tries to detect if interpreters are using old source files.

Vulnerable Configurations

Part	Description	Count
Application	Needrestart_Project Needrestart Project Needrestart 0.8 Needrestart Project Needrestart 0.9 Needrestart Project Needrestart 1.0 Needrestart Project Needrestart 1.1 Needrestart Project Needrestart 1.2 Needrestart Project Needrestart 2.0 Needrestart Project Needrestart 2.1 Needrestart Project Needrestart 2.2 Needrestart Project Needrestart 2.3 Needrestart Project Needrestart 2.4 Needrestart Project Needrestart 2.5 Needrestart Project Needrestart 2.6 Needrestart Project Needrestart 2.7 Needrestart Project Needrestart 2.8 Needrestart Project Needrestart 2.9 Needrestart Project Needrestart 2.10 Needrestart Project Needrestart 2.11 Needrestart Project Needrestart 3.0 Needrestart Project Needrestart 3.1 Needrestart Project Needrestart 3.2 Needrestart Project Needrestart 3.3 Needrestart Project Needrestart 3.4 Needrestart Project Needrestart 3.5	23
OS	Debian Debian Debian Linux 9.0 Debian Debian Linux 10.0 Debian Debian Linux 11.0	3

Vulnerabilities > CVE-2022-30688 {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"CVE-2022-30688"}]}

Summary

Vulnerable Configurations

References

Vulnerabilities > CVE-2022-30688