Home > Vulnerability Database > CVE-2022-48257

Mend.io Vulnerability Database

New vulnerability? Tell us about it!

CVE-2022-48257

Date: January 12, 2023

In Eternal Terminal 6.2.1, etserver and etclient have predictable logfile names in /tmp.

Language: C++

Severity Score

5.3

Related Resources (8)

Url: https://nvd.nist.gov/vuln/detail/CVE-2022-48257

Url: https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2RY6PKBU73I45L6YWNYCUK2XBEXEFX7L/

Url: https://github.com/MisterTea/EternalTerminal/issues/555

Url: https://github.com/MisterTea/EternalTerminal/pull/556

Url: http://www.openwall.com/lists/oss-security/2023/02/16/1

Url: https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NYODHZECXYFC2BNODZPZXZAXOKGMCYAP/

Url: https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/U6MO4FSKYNSAJVUXYP7LRY7ARUIGKBFL/

Url: https://www.mend.io/vulnerability-database/CVE-2022-48257

Severity Score

5.3

Weakness Type (CWE)

Insufficient Information

NVD-CWE-noinfo

Incorrect Permission Assignment for Critical Resource

CWE-732

CVSS v3.1

Base Score:	5.3
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	LOW
Integrity (I):	NONE
Availability (A):	NONE

Do you need more information?

Contact Us