GHSA-jwph-8hwh-5w78

Опубликовано: 13 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 6.5

Описание

ZNC before 1.7.1-rc1 does not properly validate untrusted lines coming from the network, allowing a non-admin user to escalate his privilege and inject rogue values into znc.conf.

Ссылки

EPSS

Процентиль: 59%

0.00377

Низкий

6.5 Medium

CVSS3

CVE ID

CVE-2018-14055

Дефекты

CWE-20

Связанные уязвимости

CVE-2018-14055

CVSS3: 6.5

ubuntu

больше 7 лет назад

ZNC before 1.7.1-rc1 does not properly validate untrusted lines coming from the network, allowing a non-admin user to escalate his privilege and inject rogue values into znc.conf.

CVE-2018-14055

CVSS3: 6.5

nvd

больше 7 лет назад

ZNC before 1.7.1-rc1 does not properly validate untrusted lines coming from the network, allowing a non-admin user to escalate his privilege and inject rogue values into znc.conf.

CVE-2018-14055

CVSS3: 6.5

debian

больше 7 лет назад

ZNC before 1.7.1-rc1 does not properly validate untrusted lines coming ...

openSUSE-SU-2018:2231-1

suse-cvrf

больше 7 лет назад

Security update for znc

openSUSE-SU-2018:2228-1

suse-cvrf

больше 7 лет назад

Security update for znc

EPSS

Процентиль: 59%

0.00377

Низкий

6.5 Medium

CVSS3

CVE ID

CVE-2018-14055

Дефекты

CWE-20