Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-gc4q-mf7x-jrrp

Опубликовано: 03 мая 2022
Источник: github
Github: Не прошло ревью

Описание

zgrep in gzip before 1.3.5 does not properly sanitize arguments, which allows local users to execute arbitrary commands via filenames that are injected into a sed script.

zgrep in gzip before 1.3.5 does not properly sanitize arguments, which allows local users to execute arbitrary commands via filenames that are injected into a sed script.

EPSS

Процентиль: 36%
0.0015
Низкий

Связанные уязвимости

ubuntu
больше 20 лет назад

zgrep in gzip before 1.3.5 does not properly sanitize arguments, which allows local users to execute arbitrary commands via filenames that are injected into a sed script.

redhat
больше 20 лет назад

zgrep in gzip before 1.3.5 does not properly sanitize arguments, which allows local users to execute arbitrary commands via filenames that are injected into a sed script.

nvd
больше 20 лет назад

zgrep in gzip before 1.3.5 does not properly sanitize arguments, which allows local users to execute arbitrary commands via filenames that are injected into a sed script.

debian
больше 20 лет назад

zgrep in gzip before 1.3.5 does not properly sanitize arguments, which ...

EPSS

Процентиль: 36%
0.0015
Низкий