Unrated severityNVD Advisory· Published Dec 25, 2022· Updated Apr 14, 2025
CVE-2022-37706
CVE-2022-37706
Description
enlightenment_sys in Enlightenment before 0.25.4 allows local users to gain privileges because it is setuid root, and the system library function mishandles pathnames that begin with a /dev/.. substring.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4(expand)+ 1 more
- (no CPE)
- (no CPE)range: <0.25.4
- osv-coords2 versionspkg:rpm/opensuse/enlightenment&distro=openSUSE%20Leap%2015.4pkg:rpm/suse/enlightenment&distro=SUSE%20Package%20Hub%2015%20SP4
< 0.25.4-bp154.4.3.1+ 1 more
- (no CPE)range: < 0.25.4-bp154.4.3.1
- (no CPE)range: < 0.25.4-bp154.4.3.1
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.