CVE-2022-23950

EPSS 0.41% · P61 Updated May 28, 2025

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2022-23950

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

In Keylime before 6.3.0, Revocation Notifier uses a fixed /tmp path for UNIX domain socket which can allow unprivileged users a method to prohibit keylime operations.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

在具有不安全权限的目录中创建临时文件

Source: NVD (National Vulnerability Database)

Vulnerability Title

Keylime 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Keylime是Keylime的一个利用 TPM 技术的开源可扩展信任系统。UNIX是The Open Group组织的，一种多用户、多进程的计算机操作系统。 Keylime 存在安全漏洞，目前尚无此漏洞的相关信息，请随时关注CNNVD或厂商公告。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	keylime	keylime 6.3.0	-

II. Public POCs for CVE-2022-23950

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2022-23950

请登录查看更多情报信息。

https://seclists.org/oss-sec/2022/q1/101x_refsource_MISC
https://github.com/keylime/keylime/commit/ea5d0373fa2c050d5d95404eb779be7e8327b911x_refsource_MISC
https://github.com/keylime/keylime/security/advisories/GHSA-9r9r-f8xc-m875x_refsource_MISC
https://nvd.nist.gov/vuln/detail/CVE-2022-23950

Same Patch Batch · n/a · 2022-09-21 · 29 CVEs total

CVE-2022-35621		Evoh NFT EvohClaimable 安全漏洞
CVE-2022-41222		Linux kernel 资源管理错误漏洞
CVE-2022-41218		Linux kernel 资源管理错误漏洞
CVE-2022-37026		Ericsson Erlang 授权问题漏洞
CVE-2022-41220		md2roff 缓冲区错误漏洞
CVE-2022-38928		XPDF 代码问题漏洞
CVE-2022-37246		Pixel＆tonic Craft CMS 跨站脚本漏洞
CVE-2022-37027		Ahsay Systems Cloud Backup Suite 参数注入漏洞
CVE-2022-40026		Simple Task Managing System SQL注入漏洞
CVE-2022-40027		Simple Task Managing System 跨站脚本漏洞
CVE-2022-40028		Simple Task Managing System 跨站脚本漏洞
CVE-2022-40029		Simple Task Managing System 跨站脚本漏洞
CVE-2022-40030		Simple Task Managing System SQL注入漏洞
CVE-2022-31679		VMware Spring Data REST 安全漏洞
CVE-2022-28982		Liferay Portal和Liferay DXP 跨站脚本漏洞
CVE-2022-29799		FacturaScripts 路径遍历漏洞
CVE-2022-29800		networkd-dispatcher 安全漏洞
CVE-2022-23948		Keylime 安全漏洞
CVE-2021-43310		Keylime 安全漏洞
CVE-2022-23949		Keylime 安全漏洞

Showing top 20 of 29 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: keylime

Same vendor: n/a

Same weakness: CWE-379

V. Comments for CVE-2022-23950

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2022-23950

I. Basic Information for CVE-2022-23950

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2022-23950

III. Intelligence Information for CVE-2022-23950

Same Patch Batch · n/a · 2022-09-21 · 29 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2022-23950

Leave a comment