UimCVEs & Vulnerabilities
2 CVEs affecting Uim products, tracked from the National Vulnerability Database, with CVSS/EPSS scores and exploitation status.
2 CVEs→ All vendors
Most Affected Products
uim 2
CVE-2005-3149MEDIUM
Uim 0.4.x before 0.4.9.1 and 0.5.0 and earlier does not properly handle the LIBUIM_VANILLA environment variable when a suid or sgid application is linked to libuim, such as immodule for Qt, which allows local users to gain privileges.
6 Oct 2005
4.6
CVSS
CVE-2005-0503MEDIUM
uim before 0.4.5.1 trusts certain environment variables when libUIM is used in setuid or setgid applications, which allows local users to gain privileges.
21 Feb 2005
4.6
CVSS
← PrevPage 1 / 1Next →