Arbitrary Unmount Vulnerability in Cantata-Mounter

Arbitrary Unmount Vulnerability in Cantata-Mounter

CVE-2018-12560 · MEDIUM Severity

AV:N/AC:L/AU:S/C:N/I:N/A:P

An issue was discovered in the cantata-mounter D-Bus service in Cantata through 2.3.1. Arbitrary unmounts can be performed by regular users via directory traversal sequences such as a home/../sys/kernel substring.

Learn more about our User Device Pen Test.