Vulnerabilities (CVE)

Filtered by vendor S3dvt Project Subscribe
Filtered by product S3dvt
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2014-1226 1 S3dvt Project 1 S3dvt 2024-11-21 7.2 HIGH 7.8 HIGH
The pipe_init_terminal function in main.c in s3dvt allows local users to gain privileges by leveraging setuid permissions and usage of bash 4.3 and earlier. NOTE: This vulnerability exists because of an incomplete fix for CVE-2013-6876.
CVE-2013-6876 1 S3dvt Project 1 S3dvt 2024-11-21 7.2 HIGH 7.8 HIGH
The (1) pty_init_terminal and (2) pipe_init_terminal functions in main.c in s3dvt 0.2.2 and earlier allows local users to gain privileges by leveraging setuid permissions and usage of bash 4.3 and earlier. NOTE: this vulnerability was fixed with commit ad732f00b411b092c66a04c359da0f16ec3b387, but the version number was not changed.