Description

super-xray is the GUI alternative for vulnerability scanning tool xray. In 0.2-beta, a privilege escalation vulnerability was discovered. This caused inaccurate default xray permissions. Note: this vulnerability only affects Linux and Mac OS systems. Users should upgrade to super-xray 0.3-beta.

Related CPE's

a

super_xray_project

super_xray

0.2

beta

Vulnerable

o

apple

macos

-

o

linux

linux_kernel

-

References

https://github.com/4ra1n/super-xray/releases/tag/0.3-beta

Release NotesThird Party Advisory

https://github.com/4ra1n/super-xray/security/advisories/GHSA-2g28-xrw6-fq5f

ExploitThird Party Advisory

Weaknesses

[email protected]

Primary
CWE-250

CVSS impact metrics

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.8 · High

  • CVSS V3.1

  • CVSS V3.0

  • CVSS V2.0

Information

Source identifier

[email protected]

Vulnerability status

Analyzed

Published

2022-11-22T18:15:10.287

2 years ago

Last modified

2022-11-26T03:29:17.810

2 years ago