CVE-2011-4349
Published Dec 10, 2011
Last updated 13 years ago
Overview
- Description
- Multiple SQL injection vulnerabilities in (1) cd-mapping-db.c and (2) cd-device-db.c in colord before 0.1.15 allow local users to execute arbitrary SQL commands via vectors related to color devices and (a) device id, (b) property, or (c) profile id.
- Source
- secalert@redhat.com
- NVD status
- Analyzed
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 4.6
- Impact score
- 6.4
- Exploitability score
- 3.9
- Vector string
- AV:L/AC:L/Au:N/C:P/I:P/A:P
Weaknesses
- nvd@nist.gov
- CWE-89
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:freedesktop:colord:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CD9D7F67-B0B9-4718-A4AD-43E11CB911D6",
"versionEndIncluding": "0.1.14"
},
{
"criteria": "cpe:2.3:a:freedesktop:colord:0.1.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "76935BB4-6F70-4330-8095-1C678E5008B2"
},
{
"criteria": "cpe:2.3:a:freedesktop:colord:0.1.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B0151925-B3FD-4F66-873D-5D02D4EE5279"
},
{
"criteria": "cpe:2.3:a:freedesktop:colord:0.1.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "929CE81F-9E67-4AC0-8F2D-0B42173A86D7"
},
{
"criteria": "cpe:2.3:a:freedesktop:colord:0.1.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "71A33D61-1580-4482-BFB2-F85DC9FA3EDD"
},
{
"criteria": "cpe:2.3:a:freedesktop:colord:0.1.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "53AF414A-06D5-4C18-80E9-728BDBB89BF5"
},
{
"criteria": "cpe:2.3:a:freedesktop:colord:0.1.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F2C0CA8E-D04C-4A65-9398-820D10367F6D"
},
{
"criteria": "cpe:2.3:a:freedesktop:colord:0.1.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9AC9D44E-7100-489A-BC2A-FFCFF0981B19"
},
{
"criteria": "cpe:2.3:a:freedesktop:colord:0.1.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "212E062D-8254-4925-9BEA-316B0AB45F79"
},
{
"criteria": "cpe:2.3:a:freedesktop:colord:0.1.8:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1ED10031-E979-4F25-B8B4-7AD251CBFAD9"
},
{
"criteria": "cpe:2.3:a:freedesktop:colord:0.1.9:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "93945AC7-C34D-43BC-9371-68039D851DDE"
},
{
"criteria": "cpe:2.3:a:freedesktop:colord:0.1.10:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B971026A-0D3B-4125-A6F1-A8E0C81493F1"
},
{
"criteria": "cpe:2.3:a:freedesktop:colord:0.1.11:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D496542A-7EC5-4D56-AAA8-D781470EFFFD"
},
{
"criteria": "cpe:2.3:a:freedesktop:colord:0.1.12:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4028A7D6-82F5-4F46-84CF-BEC034675EDA"
},
{
"criteria": "cpe:2.3:a:freedesktop:colord:0.1.13:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4D3CE7CE-CBF5-45B0-BCB2-D6C88588FAA1"
}
],
"operator": "OR"
}
]
}
]