Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
CVE Vulnerability Details :
CVE-2022-26526
PUBLISHED
More InfoOfficial Page
Assigner-mitre
Assigner Org ID-8254265b-2729-46b6-b9e3-3dfca2d5bfca
View Known Exploited Vulnerability (KEV) details
Published At-17 Mar, 2022 | 14:57
Updated At-03 Aug, 2024 | 05:03
Rejected At-
▼CVE Numbering Authority (CNA)

Anaconda Anaconda3 (Anaconda Distribution) through 2021.11.0.0 and Miniconda3 through 4.11.0.0 can create a world-writable directory under %PROGRAMDATA% and place that directory into the system PATH environment variable. Thus, for example, local users can gain privileges by placing a Trojan horse file into that directory. (This problem can only happen in a non-default installation. The person who installs the product must specify that it is being installed for all users. Also, the person who installs the product must specify that the system PATH should be changed.

Affected Products
Vendor
n/a
Product
n/a
Versions
Affected
  • n/a
Problem Types
TypeCWE IDDescription
textN/An/a
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://docs.conda.io/en/latest/miniconda.html
x_refsource_MISC
https://github.com/continuumio/anaconda-issues/issues
x_refsource_MISC
https://improsec.com/tech-blog/privilege-escalation-vulnerability-in-anaconda3-and-miniconda3
x_refsource_MISC
https://repo.anaconda.com/miniconda/
x_refsource_MISC
▼Authorized Data Publishers (ADP)
CVE Program Container
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://docs.conda.io/en/latest/miniconda.html
x_refsource_MISC
x_transferred
https://github.com/continuumio/anaconda-issues/issues
x_refsource_MISC
x_transferred
https://improsec.com/tech-blog/privilege-escalation-vulnerability-in-anaconda3-and-miniconda3
x_refsource_MISC
x_transferred
https://repo.anaconda.com/miniconda/
x_refsource_MISC
x_transferred
Details not found