CVE-2023-49347

Source
https://nvd.nist.gov/vuln/detail/CVE-2023-49347
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-49347.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2023-49347
Aliases
  • GHSA-xxfq-fqfp-cpvj
Related
Published
2023-12-14T22:15:43Z
Modified
2024-10-12T11:11:22.848043Z
Severity
  • 7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
[none]
Details

Temporary data passed between application components by Budgie Extras Windows Previews could potentially be viewed or manipulated. The data is stored in a location that is accessible to any user who has local access to the system. Attackers may read private information from windows, present false information to users, or deny access to the application.

References

Affected packages

Debian:11 / budgie-extras

Package

Name
budgie-extras
Purl
pkg:deb/debian/budgie-extras?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.1.0-1
1.3.0-1
1.3.90-1
1.3.91-1
1.4.0-1
1.4.0-2
1.4.90-1
1.4.90-2
1.5.0-1
1.5.0-2
1.5.90-1
1.5.91-1
1.6.0-1
1.7.0-1
1.7.0-2
1.7.0-3
1.7.1-1
1.8.0-1

Ecosystem specific

{
    "urgency": "unimportant"
}

Debian:12 / budgie-extras

Package

Name
budgie-extras
Purl
pkg:deb/debian/budgie-extras?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.5.0-2
1.5.90-1
1.5.91-1
1.6.0-1
1.7.0-1
1.7.0-2
1.7.0-3
1.7.1-1
1.8.0-1

Ecosystem specific

{
    "urgency": "unimportant"
}

Debian:13 / budgie-extras

Package

Name
budgie-extras
Purl
pkg:deb/debian/budgie-extras?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.7.1-1

Affected versions

1.*

1.5.0-2
1.5.90-1
1.5.91-1
1.6.0-1
1.7.0-1
1.7.0-2
1.7.0-3

Ecosystem specific

{
    "urgency": "unimportant"
}

Git / github.com/ubuntubudgie/budgie-extras

Affected ranges

Type
GIT
Repo
https://github.com/ubuntubudgie/budgie-extras
Events

Affected versions

v1.*

v1.4.0
v1.4.90
v1.5.0
v1.5.90
v1.5.91
v1.6.0
v1.7.0