CVE-2022-41950

MEDIUM

Super Xray - Privilege Escalation

Title source: rule

Description

super-xray is the GUI alternative for vulnerability scanning tool xray. In 0.2-beta, a privilege escalation vulnerability was discovered. This caused inaccurate default xray permissions. Note: this vulnerability only affects Linux and Mac OS systems. Users should upgrade to super-xray 0.3-beta.

References (2)

[Release Notes, Third Party Advisory] https://github.com/4ra1n/super-xray/releases/tag/0.3-beta

[Exploit, Third Party Advisory] https://github.com/4ra1n/super-xray/security/advisories/GHSA-2g28-xrw6-fq5f

Scores

CVSS v3 6.4

EPSS 0.0018

EPSS Percentile 38.7%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact total

Details

CWE

CWE-250

Status published

Products (1)

super_xray_project/super_xray 0.2 beta

Published Nov 22, 2022

Tracked Since Feb 18, 2026