CVE-2023-50255

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Dec 27, 2023

Updated: Jan 4, 2024

CWE ID 26

CWE ID 23

CWE ID 22

Summary

CVE-2023-50255 is a path traversal vulnerability affecting Deepin-Compressor, the default archive manager in Deepin Linux OS. This issue, present before version 5.12.21, can be exploited through crafted archives to execute remote commands on a target system. The vulnerability does not have any known workarounds, making updating to version 5.12.21 an essential measure for mitigating this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/tsu09I
https://www.cve.org/CVERecord?id=CVE-2023-50255
https://nvd.nist.gov/vuln/detail/CVE-2023-50255

Back to Vulnerability Database

CVE-2023-50255

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations