Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Untrusted search path vulnerability in plugins/abrt-action-install-debuginfo-to-abrt-cache.c in Automatic Bug Reporting Tool (ABRT) 2.0.9 and earlier allows local users to load and execute arbitrary Python modules by modifying the PYTHONPATH environment variable to reference a malicious Python module.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
abrt PYTHONPATH 环境变量不可信搜索路径漏洞
Vulnerability Description
ABRT是一套自动BUG报告工具。 Automatic Bug Reporting Tool (ABRT) 2.0.9和较早版本中的plugins/abrt-action-install-debuginfo-to-abrt-cache.c中存在不可信搜索路径漏洞。通过修改PYTHONPATH环境变量来引用恶意的Python模块,本地攻击者利用该漏洞加载并执行任意Python模块。
CVSS Information
N/A
Vulnerability Type
N/A