VDB

CNVD-2020-50123

CNVD-2020-50123 PUBLISHED

Zsh是一款可用作交互式登录的shell及脚本编写的命令解释器。 Zsh 5.8之前版本中存在安全漏洞,该漏洞源于程序未能覆盖原来存储的uid。攻击者可利用该漏洞恢复原来的权限。

Affected Products

VendorProductVersions
Zsh Zsh <5.8

Timeline

  • Mar 19, 2020 CVE ID Reserved
  • Sep 2, 2020 CVE Published
  • Mar 4, 2026 Distribution Patch

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›