CVE-2024-48991

EPSS 0.25%
Veröffentlicht 19.11.2024 18:15:21
Zuletzt bearbeitet 03.11.2025 23:16:24
Quelle security@ubuntu.com
CVE-Watchlists
Login
Unerledigt
Login

Qualys discovered that needrestart, before version 3.8, allows local attackers to execute arbitrary code as root by winning a race condition and tricking needrestart into running their own, fake Python interpreter (instead of the system's real Python interpreter). The initial security fix (6ce6136) introduced a regression which was subsequently resolved (42af5d3).

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 11

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Needrestart Project ≫ Needrestart Version < 3.8

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.25%	0.481

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
security@ubuntu.com	7.8	1.8	5.9	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE-362 Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

The product contains a concurrent code sequence that requires temporary, exclusive access to a shared resource, but a timing window exists in which the shared resource can be modified by another code sequence operating concurrently.

https://www.qualys.com/2024/11/19/needrestart/needrestart.txt

Third Party Advisory

https://www.openwall.com/lists/oss-security/2024/11/19/1

Mailing List

https://github.com/liske/needrestart/commit/42af5d328901287a4f79d1f5861ac827a53fd56d

Patch

https://github.com/liske/needrestart/commit/6ce6136cccc307c6b8a0f8cae12f9a22ac2aad59

Patch

https://www.cve.org/CVERecord?id=CVE-2024-48991

VDB Entry

http://www.openwall.com/lists/oss-security/2024/11/30/4

Mailing List