Needrestart Project Needrestart — known CVE vulnerabilities
Every CVE whose affected-product data names Needrestart Project Needrestart, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2022-30688 — CVSS 7.8 (high): needrestart 0.8 through 3.5 before 3.6 is prone to local privilege escalation. Regexes to detect the Perl, Python, and Ruby interpreters…
CVE-2024-11003 — CVSS 7.8 (high): Qualys discovered that needrestart, before version 3.8, passes unsanitized data to a library (Modules::ScanDeps) which expects safe input…
CVE-2024-48990 — CVSS 7.8 (high): Qualys discovered that needrestart, before version 3.8, allows local attackers to execute arbitrary code as root by tricking needrestart…
CVE-2024-48991 — CVSS 7.8 (high): Qualys discovered that needrestart, before version 3.8, allows local attackers to execute arbitrary code as root by winning a race…
CVE-2024-48992 — CVSS 7.8 (high): Qualys discovered that needrestart, before version 3.8, allows local attackers to execute arbitrary code as root by tricking needrestart…