CVE-2023-49342 | budgie-clockworks SVG /tmp/_clockworks injection

Posted by Angelo Barbosa | Dec 14, 2023 | CVE

A vulnerability, which was classified as problematic, has been found in budgie-clockworks. Affected by this issue is some unknown functionality of the file /tmp/<user>_clockworks of the component SVG Handler. The manipulation leads to injection.

This vulnerability is handled as CVE-2023-49342. It is possible to launch the attack on the local host. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-49342 | budgie-clockworks SVG /tmp/_clockworks injection

Related Posts

CVE-2024-32454 | Wappointment Appointment Bookings for Zoom GoogleMeet and more Plugin server-side request forgery

CVE-2023-6960 | Sciener TTLock App Key access control (VU#949046)

CVE-2024-21658 | discourse-calendar region resource consumption (GHSA-65f2-9ghp-x8h8)

CVE-2024-29187 | WiX Toolset up to 3.14.0/4.0.4 on Windows Installer C:WindowsTemp permission assignment