Описание
chetcpasswd.cgi in Pedro Lineu Orso chetcpasswd before 2.1 allows remote attackers to read the last line of the shadow file via a long user (userid) field.
Ссылки
- PatchVendor Advisory
- ExploitVendor Advisory
- ExploitPatchVendor Advisory
- PatchVendor Advisory
- ExploitVendor Advisory
- ExploitPatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:chetcpasswd:chetcpasswd:2.1:*:*:*:*:*:*:*
EPSS
Процентиль: 92%
0.08811
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
debian
больше 22 лет назад
chetcpasswd.cgi in Pedro Lineu Orso chetcpasswd before 2.1 allows remo ...
github
больше 3 лет назад
chetcpasswd.cgi in Pedro Lineu Orso chetcpasswd before 2.1 allows remote attackers to read the last line of the shadow file via a long user (userid) field.
EPSS
Процентиль: 92%
0.08811
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other