Описание
fexsrv in F*EX (aka Frams' Fast File EXchange) before fex-20160919_2 allows eval injection (for unauthenticated remote code execution).
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| fex | fixed | 20160919-2 | package | |
| fex | fixed | 20160919-2~deb10u1 | buster | package |
| fex | fixed | 20160919-2~deb9u1 | stretch | package |
Примечания
https://secfault-security.com/advisories/cve2020-15591.html
EPSS
Процентиль: 90%
0.05254
Низкий
Связанные уязвимости
CVSS3: 9.8
ubuntu
почти 4 года назад
fexsrv in F*EX (aka Frams' Fast File EXchange) before fex-20160919_2 allows eval injection (for unauthenticated remote code execution).
CVSS3: 9.8
nvd
почти 4 года назад
fexsrv in F*EX (aka Frams' Fast File EXchange) before fex-20160919_2 allows eval injection (for unauthenticated remote code execution).
CVSS3: 9.8
github
почти 4 года назад
fexsrv in F*EX (aka Frams' Fast File EXchange) before fex-20160919_2 allows eval injection (for unauthenticated remote code execution).
EPSS
Процентиль: 90%
0.05254
Низкий