Описание
Distrobox before 1.7.0.1 allows attackers to execute arbitrary code via command injection into exported executables.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| distrobox | fixed | 1.7.0.1-1 | package | |
| distrobox | not-affected | bookworm | package |
Примечания
https://github.com/89luca89/distrobox/issues/1275
Fixed by: https://github.com/89luca89/distrobox/commit/82a69f0a234e73e447d0ea8c8b3443b84fd31944 (1.7.0.1)
EPSS
Процентиль: 47%
0.00244
Низкий
Связанные уязвимости
CVSS3: 9.8
ubuntu
почти 2 года назад
Distrobox before 1.7.0.1 allows attackers to execute arbitrary code via command injection into exported executables.
CVSS3: 9.8
nvd
почти 2 года назад
Distrobox before 1.7.0.1 allows attackers to execute arbitrary code via command injection into exported executables.
CVSS3: 9.8
github
почти 2 года назад
Distrobox before 1.7.0.1 allows attackers to execute arbitrary code via command injection into exported executables.
EPSS
Процентиль: 47%
0.00244
Низкий