CVE-2022-25010 | SynScan

Vulnerability Database

289,784

Total vulnerabilities in the database

CVE-2022-25010

The component /rootfs in RageFile of Stepmania v5.1b2 and below allows attackers access to the entire file system.

Published: Mar 2, 2022
Updated: Apr 14, 2023
CVE: CVE-2022-25010
Severity: Critical
Exploit:

CVSS v3:

Severity: Critical
Score: 9.1
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

CVSS v2:

Severity: Medium
Score: 6.4
AV:N/AC:L/Au:N/C:P/I:P/A:N

CWEs:

Affected Software
References

Software	From	Fixed in
stepmania / stepmania	5.1.0-beta1	5.1.0-beta1.x
stepmania / stepmania	5.1.0-beta2	5.1.0-beta2.x
stepmania / stepmania	-	5.0.12.x
stepmania / stepmania	5.1.0-alpha	5.1.0-alpha.x
stepmania / stepmania	5.1.0-alpha2	5.1.0-alpha2.x
stepmania / stepmania	5.1.0-alpha3	5.1.0-alpha3.x

https://github.com/stepmania/stepmania/pull/2184