CVE-2022-2787

Medium

Schroot before 1.6.13 had too permissive rules on chroot or session names, allowing a denial of service on the schroot service for all…

debian·CWE-281·Published 2022-08-27

CVSS

4.3

EPSS

0.01

KEV

Exploits

cve.orgen

174 chars

Schroot before 1.6.13 had too permissive rules on chroot or session names, allowing a denial of service on the schroot service for all users that may start a schroot session.

NVDen

174 chars

Schroot before 1.6.13 had too permissive rules on chroot or session names, allowing a denial of service on the schroot service for all users that may start a schroot session.

NVDes

244 chars

Schroot versiones anteriores a 1.6.13, presenta reglas demasiado permisivas en los nombres de chroot o de sesión, lo que permitía una denegación de servicio en el servicio schroot para todos los usuarios que pudieran iniciar una sesión schroot.

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
3.1	Primary	NVD	4.3	2.8	1.4	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L