VYPR
Vendor

Common Desktop Environment

Products
2
CVEs
2
Across products
2
Status
Private

Products

2

Recent CVEs

2
  • CVE-2023-24039HigJan 21, 2023
    risk 0.51cvss 7.8epss 0.00

    A stack-based buffer overflow in ParseColors in libXm in Common Desktop Environment 1.6 can be exploited by local low-privileged users via the dtprintinfo setuid binary to escalate their privileges to root on Solaris 10 systems. NOTE: This vulnerability only affects products…

  • CVE-2023-24040HigJan 21, 2023
    risk 0.46cvss 7.1epss 0.00

    dtprintinfo in Common Desktop Environment 1.6 has a bug in the parser of lpstat (an invoked external command) during listing of the names of available printers. This allows low-privileged local users to inject arbitrary printer names via the $HOME/.printers file. This injection…