Total
3 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2011-4060 | 1 Qnx | 1 Neutrino Rtos | 2024-11-21 | 3.3 LOW | N/A |
The runtime linker in QNX Neutrino RTOS 6.5.0 before Service Pack 1 does not properly clear the LD_DEBUG_OUTPUT and LD_DEBUG environment variables when a program is spawned from a setuid program, which allows local users to overwrite files via a symlink attack. | |||||
CVE-2006-0618 | 1 Qnx | 1 Neutrino Rtos | 2024-11-21 | 4.6 MEDIUM | N/A |
Format string vulnerability in fontsleuth in QNX Neutrino RTOS 6.3.0 allows local users to execute arbitrary code via format string specifiers in the zeroth argument (program name). | |||||
CVE-2002-2409 | 1 Qnx | 2 Neutrino Rtos, Photon Microgui | 2024-11-20 | 3.5 LOW | N/A |
Photon microGUI in QNX Neutrino realtime operating system (RTOS) 6.1.0 and 6.2.0 allows attackers to read user clipboard information via a direct request to the 1.TEXT file in a directory whose name is a hex-encoded user ID. |