Security Advisory

CVE-2024-36053

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-05-19 15:16:18

Last updated 2025-02-13 15:59:12

Assigner mitre

State PUBLISHED

Description

In the mintupload package through 4.2.0 for Linux Mint, service-name mishandling leads to command injection via shell metacharacters in check_connection, drop_data_received_cb, and Service.remove. A user can modify a service name in a ~/.linuxmint/mintUpload/services/service file.

← Browse all CVEs View on cve.org ↗