Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-r3c4-qgcj-4qp2

Опубликовано: 15 дек. 2024
Источник: github
Github: Не прошло ревью
CVSS3: 8.6

Описание

A flaw was found in Radare2, which contains a command injection vulnerability caused by insufficient input validation when handling Pebble Application files. Maliciously crafted inputs can inject shell commands during command parsing, leading to unintended behavior during file processing​

A flaw was found in Radare2, which contains a command injection vulnerability caused by insufficient input validation when handling Pebble Application files. Maliciously crafted inputs can inject shell commands during command parsing, leading to unintended behavior during file processing​

Ссылки

EPSS

Процентиль: 11%
0.00039
Низкий

8.6 High

CVSS3

CVE ID

CVE-2024-11858

Дефекты

CWE-78

Связанные уязвимости

ubuntu логотип

CVE-2024-11858

CVSS3: 8.6
ubuntu
около 1 года назад

A flaw was found in Radare2, which contains a command injection vulnerability caused by insufficient input validation when handling Pebble Application files. Maliciously crafted inputs can inject shell commands during command parsing, leading to unintended behavior during file processing​

nvd логотип

CVE-2024-11858

CVSS3: 8.6
nvd
около 1 года назад

A flaw was found in Radare2, which contains a command injection vulnerability caused by insufficient input validation when handling Pebble Application files. Maliciously crafted inputs can inject shell commands during command parsing, leading to unintended behavior during file processing​

debian логотип

CVE-2024-11858

CVSS3: 8.6
debian
около 1 года назад

A flaw was found in Radare2, which contains a command injection vulner ...

EPSS

Процентиль: 11%
0.00039
Низкий

8.6 High

CVSS3

CVE ID

CVE-2024-11858

Дефекты

CWE-78