exploitDog

GHSA-32j9-px4f-v6vv

Опубликовано: 03 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Format string vulnerability in cfd daemon in GNU CFEngine before 1.6.0a11 allows attackers to execute arbitrary commands via format characters in the CAUTH command.

Format string vulnerability in cfd daemon in GNU CFEngine before 1.6.0a11 allows attackers to execute arbitrary commands via format characters in the CAUTH command.

Ссылки

EPSS

Процентиль: 75%

0.00921

Низкий

CVE ID

Связанные уязвимости

CVE-2000-0947

nvd

около 25 лет назад

Format string vulnerability in cfd daemon in GNU CFEngine before 1.6.0a11 allows attackers to execute arbitrary commands via format characters in the CAUTH command.

EPSS

Процентиль: 75%

0.00921

Низкий

CVE ID