Описание
fcheck prior to 2.57.59 calls the file signature checking program insecurely, which can allow a local user to run arbitrary commands via a file name that contains shell metacharacters.
Уязвимые конфигурации
Конфигурация 1Версия до 2.57.59 (включая)
cpe:2.3:a:michael_a._gumienny:fcheck:*:*:*:*:*:*:*:*
EPSS
Процентиль: 23%
0.00073
Низкий
4.6 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
больше 3 лет назад
fcheck prior to 2.57.59 calls the file signature checking program insecurely, which can allow a local user to run arbitrary commands via a file name that contains shell metacharacters.
EPSS
Процентиль: 23%
0.00073
Низкий
4.6 Medium
CVSS2
Дефекты
NVD-CWE-Other