Nimbuspwn security vulnerabilities, tracked as CVE-2022-29799 and CVE-2022-29800, exist in networkd-dispatcher, a component that sends link state changes on Linux machines. The vulnerability tracked as code CVE-2022-29799 exists due to a Directory Traversal error in the _run_hooks_for_state function in the source code of networkd-dispatcher. Another security vulnerability with code CVE-2022-29800 is related to a time-of-check to time-of-use (TOCTOU) error in the _run_hooks_for_state function.[/vc_column_text][vc_empty_space height=”15px”][vc_single_image image=”11124″ img_size=”full” alignment=”center”][vc_column_text]To not be the target of malware campaigns that can be carried out using these security vulnerabilities, users of networkd-dispatcher are advised to immediately update the vulnerable versions to the latest version that fixes the vulnerabilities.[/vc_column_text][vc_empty_space][/vc_column][/vc_row]
Share This:
- Categories
- Latest News
- Follow Us on Social Media!