CVE-2026-40556
- EPSS -
- Veröffentlicht 28.04.2026 13:54:11
- Zuletzt bearbeitet 29.04.2026 08:16:17
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
CVE-2026-6843
- EPSS 0.11%
- Veröffentlicht 22.04.2026 08:30:04
- Zuletzt bearbeitet 20.05.2026 14:10:44
A flaw was found in nano. A local user could exploit a format string vulnerability in the `statusline()` function. By creating a directory with a name containing `printf` specifiers, the application attempts to display this name, leading to a segment...
CVE-2024-5742
- EPSS 0.35%
- Veröffentlicht 12.06.2024 09:15:23
- Zuletzt bearbeitet 21.11.2024 09:48:16
A vulnerability was found in GNU Nano that allows a possible privilege escalation through an insecure temporary file. If Nano is killed while editing, a file it saves to an emergency file with the permissions of the running user provides a window of ...
CVE-2010-1160
- EPSS 0.37%
- Veröffentlicht 16.04.2010 19:30:00
- Zuletzt bearbeitet 16.06.2026 23:17:37
GNU nano before 2.2.4 does not verify whether a file has been changed before it is overwritten in a file-save operation, which allows local user-assisted attackers to overwrite arbitrary files via a symlink attack on an attacker-owned file that is be...
CVE-2010-1161
- EPSS 0.28%
- Veröffentlicht 16.04.2010 19:30:00
- Zuletzt bearbeitet 16.06.2026 23:17:38
Race condition in GNU nano before 2.2.4, when run by root to edit a file that is not owned by root, allows local user-assisted attackers to change the ownership of arbitrary files via vectors related to the creation of backup files.