CVE-2021-32563 - log back

CVE-2021-32563 edited at 11 May 2021 07:41:47
Severity
- Unknown
+ Medium
Remote
- Unknown
+ Local
Type
- Unknown
+ Arbitrary command execution
Description
+ An issue was discovered in Thunar before 4.16.7. When called with a regular file as a command-line argument, it delegates to a different program (based on the file type) without user confirmation. This could be used to achieve code execution.
References
+ https://www.openwall.com/lists/oss-security/2021/05/09/2
+ https://gitlab.xfce.org/xfce/thunar/-/commit/495324deecaea458fce8cd3778fea23ecd57a044
Notes
CVE-2021-32563 created at 11 May 2021 07:39:17