CVE-2024-36053 | linuxmint mintupload up to 4.2.0 service os command injection

Posted by Angelo Barbosa | May 19, 2024 | CVE

A vulnerability classified as critical was found in linuxmint mintupload up to 4.2.0. This vulnerability affects the function check_connection/drop_data_received_cb/Service.remove of the file ~/.linuxmint/mintUpload/services/service. The manipulation leads to os command injection.

This vulnerability was named CVE-2024-36053. The attack can only be initiated within the local network. There is no exploit available.

CVE-2024-36053 | linuxmint mintupload up to 4.2.0 service os command injection

Related Posts

CVE-2024-42994 | VTiger CRM up to 8.1.0 MailManager CompanyDetails sql injection

CVE-2024-24746 | Apache NimBLE up to 1.6.0 Bluetooth Stack denial of service

CVE-2023-7192 | Linux Kernel Netfilter nf_conntrack_netlink.c ctnetlink_create_conntrack memory leak

CVE-2024-40402 | Sourcecodester Simple Library Management System 1.0 ajax.php username sql injection (Issue 49)