Lucene search

K

GoogleOSV:USN-6721-1

HistoryApr 04, 2024 - 6:06 p.m.

xorg-server, xwayland vulnerabilities

2024-04-0418:06:26

Google

osv.dev

11

x.org x server

data handling

glyphs

crash

cve-2024-31080

cve-2024-31081

cve-2024-31082

cve-2024-31083

software

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.2 High

AI Score

Confidence

Low

0.0005 Low

EPSS

Percentile

17.2%

It was discovered that X.Org X Server incorrectly handled certain data.
An attacker could possibly use this issue to expose sensitive information.
(CVE-2024-31080, CVE-2024-31081, CVE-2024-31082)

It was discovered that X.Org X Server incorrectly handled certain glyphs.
An attacker could possibly use this issue to cause a crash or expose sensitive
information. (CVE-2024-31083)

References

ubuntu.com/security/CVE-2024-31080

ubuntu.com/security/CVE-2024-31081

ubuntu.com/security/CVE-2024-31082

ubuntu.com/security/CVE-2024-31083

ubuntu.com/security/notices/USN-6721-1

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.2 High

AI Score

Confidence

Low

0.0005 Low

EPSS

Percentile

17.2%

Related for OSV:USN-6721-1

nessus49 openvas18 osv14 fedora3 slackware2 ubuntu2 redos1 almalinux5 redhat13 oraclelinux7 debian2 mageia2 amazon4 rocky4 freebsd1 veracode4 cgr4 redhatcve4 cve4 ubuntucve4 nvd4 alpinelinux4 cvelist4 debiancve4 wolfi4 zdi1