CVE-2023-46277

Published: Oct 20, 2023

Modified: Sep 12, 2024

PUBLISHED

Description

please (aka pleaser) through 0.5.4 allows privilege escalation through the TIOCSTI and/or TIOCLINUX ioctl. (If both TIOCSTI and TIOCLINUX are disabled, this cannot be exploited.)

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://gitlab.com/edneville/please/-/issues/13

https://gitlab.com/edneville/please/-/merge_requests/69#note_1594254575

https://github.com/rustsec/advisory-db/pull/1798

https://rustsec.org/advisories/RUSTSEC-2023-0066.html

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2023-46277

Description

Affected Products

References