Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
zsh before 5.0.7 allows evaluation of the initial values of integer variables imported from the environment (instead of treating them as literal numbers). That could allow local privilege escalation, under some specific and atypical conditions where zsh is being invoked in privilege-elevation contexts when the environment has not been properly sanitized, such as when zsh is invoked by sudo on systems where "env_reset" has been disabled.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
zsh 权限许可和访问控制问题漏洞
Vulnerability Description
zsh是一个使用在Linux系统中的交互式命令解释器和命令编程语言。 zsh 5.0.7之前版本中存在权限许可和访问控制漏洞。本地攻击者可利用该漏洞获取提升的权限。
CVSS Information
N/A
Vulnerability Type
N/A