CVE-2023-49347

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2023-49347

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-49347.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2023-49347

Downstream

DEBIAN-CVE-2023-49347

UBUNTU-CVE-2023-49347

USN-6556-1

openSUSE-SU-2024:13508-1

Related

GHSA-xxfq-fqfp-cpvj
openSUSE-SU-2024:13508-1

Published

2023-12-14T22:15:43Z

Modified

2025-10-10T04:42:22.480019Z

Severity

7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

Temporary data passed between application components by Budgie Extras Windows Previews could potentially be viewed or manipulated. The data is stored in a location that is accessible to any user who has local access to the system. Attackers may read private information from windows, present false information to users, or deny access to the application.

References

Affected packages

Git / github.com/ubuntubudgie/budgie-extras

Affected ranges

Type: GIT
Repo: https://github.com/ubuntubudgie/budgie-extras
Events: Introduced

ac033a617d4c03a8c87b87ff882d111035c112fc

Fixed

8d6ae110b012ee9c5836148f5eecd3dc51192b5d

Affected versions

v1.*

v1.4.0

v1.4.90

v1.5.0

v1.5.90

v1.5.91

v1.6.0

v1.7.0