Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
World-writable uninstall script executed as root in Arturia Software Center
Vulnerability Description
When a plugin is installed using the Arturia Software Center (MacOS), it also installs an uninstall.sh bash script in a root owned path. This script is written to disk with the file permissions 777, meaning it is writable by any user. When uninstalling a plugin via the Arturia Software Center the Privileged Helper gets instructed to execute this script. When the bash script is manipulated by an attacker this scenario will lead to privilege escalation.
CVSS Information
N/A
Vulnerability Type
缺省权限不正确
Vulnerability Title
Arturia Software Center 安全漏洞
Vulnerability Description
Arturia Software Center是法国Arturia公司的一个用于管理、安装和更新音乐制作软件与插件的应用程序。 Arturia Software Center存在安全漏洞,该漏洞源于uninstall.sh脚本权限设置不当,可能导致本地权限提升。
CVSS Information
N/A
Vulnerability Type
N/A