Hub
by GitHub
gem: hub
Source repositories
CVEs (3)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2019-15742 | 0.04 | — | 0.05 | Jan 16, 2020 | A local privilege-escalation vulnerability exists in the Poly Plantronics Hub before 3.14 for Windows client application. A local attacker can exploit this issue to gain elevated privileges. | |||
| CVE-2024-27460 | 0.00 | — | 0.02 | May 10, 2024 | A privilege escalation exists in the updater for Plantronics Hub 3.25.1 and below. | |||
| CVE-2014-0177 | 0.00 | — | 0.00 | May 27, 2014 | The am function in lib/hub/commands.rb in hub before 1.12.1 allows local users to overwrite arbitrary files via a symlink attack on a temporary patch file. |
- CVE-2019-15742Jan 16, 2020risk 0.04cvss —epss 0.05
A local privilege-escalation vulnerability exists in the Poly Plantronics Hub before 3.14 for Windows client application. A local attacker can exploit this issue to gain elevated privileges.
- CVE-2024-27460May 10, 2024risk 0.00cvss —epss 0.02
A privilege escalation exists in the updater for Plantronics Hub 3.25.1 and below.
- CVE-2014-0177May 27, 2014risk 0.00cvss —epss 0.00
The am function in lib/hub/commands.rb in hub before 1.12.1 allows local users to overwrite arbitrary files via a symlink attack on a temporary patch file.