CNNVD-202507-3017 Information
CNNVD ID
CNNVD-202507-3017
Related CVE
- CNNVD Published: 2025-07-23
Description (Chinese)
Lastore Daemon是Wuhan deepin Technology Co.,Ltd.开源的一个应用程序。 Lastore Daemon 0.9.53-1版本和0.9.66-1版本存在安全漏洞,该漏洞源于权限管理不当,可能导致本地权限提升。
Description (English)
Lastore Daemon is an open-source application of Wuhan Deepin Technology Co., Ltd. There is a security loophole in Lastore Daemon versions 0.9.53-1 and 0.9.66-1, which stems from inadequate authority management, which may lead to increased local authority.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
Wuhan deepin Technology Co.,Ltd.
Published
2025-07-23
Last Modified
2026-02-24
References
https://github.com/linuxdeepin/lastore-daemon https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/linux/local/lastore_daemon_dbus_priv_esc.rb https://www.deepin.org/en/mirrors/releases/ https://www.exploit-db.com/exploits/39433 https://www.exploit-db.com/exploits/44523 https://www.vulncheck.com/advisories/deepin-lastore-daemon-priv-esc
Patch
https://github.com/linuxdeepin/lastore-daemon/releases
Share on: