Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An incorrect permission check in the admin backend in gvfs before version 1.39.4 was found that allows reading and modify arbitrary files by privileged users without asking for password when no authentication agent is running. This vulnerability can be exploited by malicious programs running under privileges of users belonging to the wheel group to further escalate its privileges by modifying system files without user's knowledge. Successful exploitation requires uncommon system configuration.
CVSS Information
N/A
Vulnerability Type
授权机制不正确
Vulnerability Title
GVfs 授权问题漏洞
Vulnerability Description
GVfs是一套虚拟文件系统。 GVfs中存在安全漏洞。该漏洞源于程序错误地处理了输入。攻击者可利用该漏洞访问敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A