An issue exists in the cantata-mounter D-Bus service in Cantata up to and including 2.3.1. Arbitrary unmounts can be performed by regular users via directory traversal sequences such as a home/../sys/kernel substring.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cantata project cantata |