| Max CVSS | 7.2 | Min CVSS | 4.6 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2019-20044 | 7.2 |
In Zsh before 5.8, attackers able to execute commands can regain privileges dropped by the --no-PRIVILEGED option. Zsh fails to overwrite the saved uid, so the original privileges can be restored by executing MODULE_PATH=/dir/with/module zmodload wit
|
09-01-2023 - 16:41 | 24-02-2020 - 14:15 | |
| CVE-2014-10070 | 4.6 |
zsh before 5.0.7 allows evaluation of the initial values of integer variables imported from the environment (instead of treating them as literal numbers). That could allow local privilege escalation, under some specific and atypical conditions where
|
21-03-2018 - 01:29 | 27-02-2018 - 22:29 |