- Description
- ptrace in the QNX realtime operating system (RTOS) 4.25 and 6.1.0 allows programs to attach to privileged processes, which could allow local users to execute arbitrary code by modifying running processes.
- Source
- cve@mitre.org
- NVD status
- Analyzed
CVSS 2.0
- Type
- Primary
- Base score
- 7.2
- Impact score
- 10
- Exploitability score
- 3.9
- Vector string
- AV:L/AC:L/Au:N/C:C/I:C/A:C
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:qnx:rtos:4.25:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F05ACD69-8EEF-4D6B-A825-92051DFE9C4D"
},
{
"criteria": "cpe:2.3:a:qnx:rtos:6.1.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C37EB0A5-8A16-42A1-B229-BB223AAF9AA7"
}
],
"operator": "OR"
}
]
}
]