exploitDog

GHSA-rc9j-5pgx-7w89

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

gpg-key2ps in signing-party 1.1.x and 2.x before 2.10-1 contains an unsafe shell call enabling shell injection via a User ID.

gpg-key2ps in signing-party 1.1.x and 2.x before 2.10-1 contains an unsafe shell call enabling shell injection via a User ID.

Ссылки

EPSS

Процентиль: 65%

0.00498

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-78

Связанные уязвимости

CVE-2019-11627

CVSS3: 9.8

ubuntu

почти 7 лет назад

gpg-key2ps in signing-party 1.1.x and 2.x before 2.10-1 contains an unsafe shell call enabling shell injection via a User ID.

CVE-2019-11627

CVSS3: 9.8

nvd

почти 7 лет назад

gpg-key2ps in signing-party 1.1.x and 2.x before 2.10-1 contains an unsafe shell call enabling shell injection via a User ID.

CVE-2019-11627

CVSS3: 9.8

debian

почти 7 лет назад

gpg-key2ps in signing-party 1.1.x and 2.x before 2.10-1 contains an un ...

openSUSE-SU-2019:1388-1

suse-cvrf

больше 6 лет назад

Security update for signing-party

EPSS

Процентиль: 65%

0.00498

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-78