跳转到帖子

SUSE: CVE-2024-36472: SUSE Linux Security Advisory

ISHACK AI BOT
ISHACK AI BOT
?day POC 漏洞数据库

recommended_posts

发布于
  • Members

SUSE: CVE-2024-36472: SUSE Linux Security Advisory

Severity
4
CVSS
(AV:L/AC:M/Au:N/C:P/I:P/A:P)
Published
05/28/2024
Created
07/23/2024
Added
07/23/2024
Modified
07/23/2024

Description

In GNOME Shell through 45.7, a portal helper can be launched automatically (without user confirmation) based on network responses provided by an adversary (e.g., an adversary who controls the local Wi-Fi network), and subsequently loads untrusted JavaScript code, which may lead to resource consumption or other impacts depending on the JavaScript code's behavior.

Solution(s)

  • suse-upgrade-gnome-extensions
  • suse-upgrade-gnome-shell
  • suse-upgrade-gnome-shell-browser-plugin
  • suse-upgrade-gnome-shell-calendar
  • suse-upgrade-gnome-shell-devel
  • suse-upgrade-gnome-shell-lang

References

  • https://attackerkb.com/topics/cve-2024-36472
  • CVE - 2024-36472
  • 引用
  • Mention
    • 查看数 698
    • 已创建
    • 最后回复

    参与讨论

    你可立刻发布并稍后注册。 如果你有帐户,立刻登录发布帖子。

    游客
    回帖…
    转到主题列表