CVE-2022-48258

MEDIUM

Eternal Terminal 6.2.1 - Unauthorized Sensitive Information Exposure via World-Readable Logfiles

Title source: llm
STIX 2.1

Description

In Eternal Terminal 6.2.1, etserver and etclient have world-readable logfiles.

References (7)

Core 7
Core References
Exploit, Patch, Third Party Advisory
https://github.com/MisterTea/EternalTerminal/pull/556

Scores

CVSS v3 5.3
EPSS 0.0107
EPSS Percentile 60.7%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

CISA SSVC

Vulnrichment
Exploitation none
Automatable yes
Technical Impact partial

Details

CWE
CWE-200
Status published
Products (1)
eternal_terminal_project/eternal_terminal 6.2.1
Published Jan 13, 2023
Tracked Since Feb 18, 2026