Vulnerabilities (CVE)

Filtered by vendor Kylinos Subscribe
Filtered by product Kylin-software-properties
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-3097 1 Kylinos 1 Kylin-software-properties 2024-11-21 4.3 MEDIUM 5.3 MEDIUM
A vulnerability was found in KylinSoft kylin-software-properties on KylinOS. It has been rated as critical. This issue affects the function setMainSource. The manipulation leads to os command injection. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. Upgrading to version 0.0.1-130 is able to address this issue. It is recommended to upgrade the affected component. The associated identifier of this vulnerability is VDB-230687. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
CVE-2023-3096 1 Kylinos 1 Kylin-software-properties 2024-11-21 4.3 MEDIUM 5.3 MEDIUM
A vulnerability was found in KylinSoft kylin-software-properties on KylinOS. It has been declared as critical. This vulnerability affects the function changedSource. The manipulation leads to improper access controls. An attack has to be approached locally. The exploit has been disclosed to the public and may be used. Upgrading to version 0.0.1-130 is able to address this issue. It is recommended to upgrade the affected component. VDB-230686 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.