CVE-2024-3094

GPTKB entity

Statements (21)
Predicate Object
gptkbp:instanceOf gptkb:security
gptkbp:affects xz Utils
gptkbp:citation https://www.openwall.com/lists/oss-security/2024/03/29/4
https://nvd.nist.gov/vuln/detail/CVE-2024-3094
https://www.cisa.gov/news-events/alerts/2024/03/29/critical-vulnerability-xz-utils-cve-2024-3094
gptkbp:CVSS_score 10.0
gptkbp:describes A backdoor was discovered in xz Utils versions 5.6.0 and 5.6.1, allowing remote code execution via SSH on affected systems.
gptkbp:discoveredBy gptkb:Andres_Freund
gptkbp:discoveredIn 2024
gptkbp:exploits gptkb:Backdoor
Remote Code Execution
gptkbp:hasSeverity Critical
gptkbp:hasVersion xz Utils 5.6.0
xz Utils 5.6.1
https://www.w3.org/2000/01/rdf-schema#label CVE-2024-3094
gptkbp:patchedBy xz Utils 5.6.2
gptkbp:publicationDate 2024-03-29
gptkbp:vectorFor Remote
gptkbp:vulnerableTo gptkb:CVE-2024-3094
gptkbp:bfsParent gptkb:APT3
gptkbp:bfsLayer 7