Описание
Format string vulnerability in the Log_Flush function in Weex 2.6.1.5, 2.6.1, and possibly other versions allows remote FTP servers to execute arbitrary code via format strings in filenames.
Ссылки
- Vendor Advisory
- PatchVendor Advisory
- PatchVendor Advisory
- PatchVendor Advisory
- Vendor Advisory
- PatchVendor Advisory
- PatchVendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:weex:weex:2.6.1:*:*:*:*:*:*:*
cpe:2.3:a:weex:weex:2.6.1.5:*:*:*:*:*:*:*
EPSS
Процентиль: 78%
0.01148
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
ubuntu
почти 20 лет назад
Format string vulnerability in the Log_Flush function in Weex 2.6.1.5, 2.6.1, and possibly other versions allows remote FTP servers to execute arbitrary code via format strings in filenames.
debian
почти 20 лет назад
Format string vulnerability in the Log_Flush function in Weex 2.6.1.5, ...
github
больше 3 лет назад
Format string vulnerability in the Log_Flush function in Weex 2.6.1.5, 2.6.1, and possibly other versions allows remote FTP servers to execute arbitrary code via format strings in filenames.
EPSS
Процентиль: 78%
0.01148
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other